ELOG EL_Submit Function Remote Format String Vulnerability

ELOG EL_Submit Function Remote Format String Vulnerability

ELOG is prone to a remote format-string vulnerability because the application fails to properly sanitize user-supplied input before including it in the format-specifier argument of a formatted-printing function.

Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of users running the affected application. This facilitates the remote compromise of affected computers.

ELOG version 2.0.2 is vulnerable to this issue.