Linux Kiss Server Multiple Format String Vulnerabilities

Linux Kiss Server Multiple Format String Vulnerabilities

Linux Kiss Server is prone to multiple format-string vulnerabilities because the application fails to adequately sanitize user-supplied input before passing it as the format-specifier to a formatted-printing function.

A remote attacker may execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in a denial of service.

These issues affect Linux Kiss Server 1.2; other versions may also be vulnerable.