CVE-2008-0755

Format string vulnerability in the ReportSysLogEvent function in the LPD server in cyan soft Opium OPI Server 4.10.1028 and earlier; cyanPrintIP Easy OPI, Professional, and Basic 4.10.1030 and earlier; Workstation 4.10.836 and earlier; and Standard 4.10.940 and earlier; might allow remote attackers to execute arbitrary code via format string specifiers in the queue name in a request.
Configurations

Configuration 1

cpe:2.3:a:cyan_soft:cyanprintip_professional:*:*:*:*:*:*:*:*
cpe:2.3:a:cyan_soft:cyanprintip_workstation:*:*:*:*:*:*:*:*
cpe:2.3:a:cyan_soft:cyanprintip_basic:*:*:*:*:*:*:*:*
cpe:2.3:a:cyan_soft:cyanprintip_standard:*:*:*:*:*:*:*:*
cpe:2.3:a:cyan_soft:cyanprintip_easy_opi:*:*:*:*:*:*:*:*
cpe:2.3:a:cyan_soft:opium4_opi_server:*:*:*:*:*:*:*:*

Information

Published : 2008-02-13 08:00

Updated : 2018-10-15 10:02


NVD link : CVE-2008-0755

Mitre link : CVE-2008-0755

Products Affected
No products.
CWE
CWE-134

Use of Externally-Controlled Format String