Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote attackers to execute arbitrary code via format string specifiers in the (1) Hostname tag or the (2) name attribute in the Connection tag. NOTE: there might not be any realistic circumstances in which this issue crosses privilege boundaries.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-12-07T11:00:00
Updated: 2024-08-07T16:02:36.297Z
Reserved: 2007-12-07T00:00:00
Link: CVE-2007-6273
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-12-07T11:46:00.000
Modified: 2024-11-21T00:39:45.130
Link: CVE-2007-6273
Redhat
No data.