Integer Overflow Vulnerability in rsyslog and sysklogd

Integer Overflow Vulnerability in rsyslog and sysklogd

CVE-2014-3683 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Integer overflow in rsyslog before 7.6.7 and 8.x before 8.4.2 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash) via a large priority (PRI) value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3634.

Learn more about our Web Application Penetration Testing UK.