Format string vulnerability in the PROJECT::write_account_file function in client/cs_account.cpp in BOINC, possibly 7.2.33, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in the gui_urls item in an account file.
References
Configurations
History
07 Nov 2023, 02:18
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2014-06-02 15:55
Updated : 2023-12-10 11:31
NVD link : CVE-2013-7386
Mitre link : CVE-2013-7386
CVE.ORG link : CVE-2013-7386
JSON object : View
Products Affected
rom_walton
- boinc
CWE
CWE-134
Use of Externally-Controlled Format String