we track for your security since 1999
home
presentation
vulnerabilities
documentation
contact
subscriber area
free access
The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them.
recent vulnerabilities
tracked products
RSS feed
vulnerable product
Vulnerabilities of syslog-ng
syslog-ng vulnerability: infinite loop via PCRE and global
When the syslog-ng configuration uses a rewrite with PCRE and global, an attacker can log a malicious message, in order to create an infinite loop.
syslog-ng vulnerability: incorrect permissions
On some systems, syslog-ng can create log files with incorrect permissions.
syslog-ng vulnerability: escaping the chroot
An attacker who found a vulnerability in syslog-ng can access to files located outside the chroot jail.
syslog-ng vulnerability: denial of service
An attacker can send a malicious message in order to stop syslog-ng.
Buffer overflow du démon syslog-ng
En concevant des fichiers de log contenant des macros malicieuses, un attaquant peut exécuter du code avec les droits administrateur.
Display other vulnerabilities of syslog-ng described by Vigil@nce...
Display information about syslog-ng:
http://www.balabit.com/network-security/syslog-ng/opensource-logging-system/
Copyright 1999-2013
Vigil@nce
. Vigil@nce is a service from
Orange Business Services
.
Site map
.
Legal notice
.
