Format String Vulnerability in Network Solutions Rwhoisd 1.5.7.2 and Earlier: Remote Code Execution via Rwhois Request

Format String Vulnerability in Network Solutions Rwhoisd 1.5.7.2 and Earlier: Remote Code Execution via Rwhois Request

CVE-2001-0913 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Format string vulnerability in Network Solutions Rwhoisd 1.5.7.2 and earlier, when using syslog, allows remote attackers to corrupt memory and possibly execute arbitrary code via a rwhois request that contains format specifiers.

Learn more about our Network Penetration Testing.