CVE-2004-2026

Pound <1.5 - RCE

Title source: llm

Description

Format string vulnerability in the logmsg function in svc.c for Pound 1.5 and earlier allows remote attackers to execute arbitrary code via format string specifiers in syslog messages.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nilanjan De · cremotelinux

https://www.exploit-db.com/exploits/24079

View Code ZIP pw:eip

References (8)

[Various Sources] http://www.apsis.ch/pound/pound_list/archive/2003/2003-12/1070234315000#1070234315000

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1010034

[Patch] http://secunia.com/advisories/11528

[Third Party Advisory, VDB Entry] http://www.osvdb.org/5746

[Exploit] http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0343.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/16033

[Patch] http://security.gentoo.org/glsa/glsa-200405-08.xml

[Exploit, Patch] http://www.securityfocus.com/bid/10267

Scores

EPSS 0.3274

EPSS Percentile 96.9%

Details

Status published

Products (6)

apsis/pound 1.0

apsis/pound 1.1

apsis/pound 1.2

apsis/pound 1.3

apsis/pound 1.4

apsis/pound 1.5

Published Dec 31, 2004

Tracked Since Feb 18, 2026