PT-2003-2326 · Amx · Amx

Greuff

Published

2003-12-31

Updated

2017-07-29

CVE-2003-1381

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions AMX versions 0.9.2 and earlier

Description A format string issue allows remote attackers to execute arbitrary commands via format string specifiers in the amx say command.

Recommendations For AMX versions 0.9.2 and earlier, consider disabling the amx say command until a patch is available.

Exploit

Fix

Use of Externally-Controlled Format String

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2003-1381

Amx