CVE-2005-3995

Sobexsrv <1.0.0-pre4 - RCE

Title source: llm

Description

Format string vulnerability in the dosyslog function in the OBEX server (obexsrv.c) for Sobexsrv before 1.0.0-pre4, when the syslog (-S) function is enabled, allows remote attackers to execute arbitrary code via format string specifiers in file name arguments to OBEX commands.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Kevin Finisterre · perlremotelinux

https://www.exploit-db.com/exploits/1355

View Code ZIP pw:eip

References (4)

[Patch] http://www.securityfocus.com/bid/15692

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/418515/100/0/threaded

[Third Party Advisory] http://www.vupen.com/english/advisories/2005/2711

[Exploit, Patch, Vendor Advisory] http://www.digitalmunition.com/DMA%5B2005-1202a%5D.txt

Scores

EPSS 0.0990

EPSS Percentile 93.0%

Details

Status published

Products (1)

sobexsrv/sobexsrv < 1.0.0_pre3

Published Dec 05, 2005

Tracked Since Feb 18, 2026