Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Jeremy Elson Subscribe
Filtered by product Tcpflow
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2003-0671 1 Jeremy Elson 1 Tcpflow 2008-09-10 7.2 HIGH N/A
Format string vulnerability in tcpflow, when used in a setuid context, allows local users to execute arbitrary code via the device name argument, as demonstrated in Sustworks IPNetSentryX and IPNetMonitorX the setuid program RunTCPFlow.