PT-2006-7266 · Marathon · Marathon Aleph One

Published

2006-12-20

Updated

2011-03-08

CVE-2006-6664

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Marathon Aleph One versions prior to 0.17.1

Description The issue allows remote attackers to potentially cause a denial of service or execute arbitrary code via format string specifiers in the TopLevelLogger::logMessageV function.

Recommendations For versions prior to 0.17.1, update to version 0.17.1 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-6664

Affected Products

Marathon Aleph One

PT-2006-7266 · Marathon · Marathon Aleph One

CVE-2006-6664

Related Identifiers

Affected Products

References · 6