Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs

ELOG Web Logbook Multiple Remote Input Validation Vulnerabilities

ELOG is prone to multiple remote vulnerabilities. These issues can allow remote attackers to execute arbitrary code and gain access to sensitive information.

The following vulnerabilities were identified:

- a format-string vulnerability exists in the 'write_logfile()' function.
- a directory-traversal vulnerability.

ELOG versions prior to 2.6.1 are vulnerable.







 

Privacy Statement
Copyright 2009, SecurityFocus