PT-2014-3410 · University Of California+1 · Boinc+1
Published
2013-12-04
·
Updated
2025-07-08
·
CVE-2013-7386
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
BOINC version 7.2.33
Description
A format string issue in the PROJECT::write account file function in client/cs account.cpp allows remote attackers to cause a denial of service or possibly execute arbitrary code via format string specifiers in the
gui urls item in an account file.Recommendations
For BOINC version 7.2.33, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
DoS
Use of Externally-Controlled Format String
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Boinc