Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Format string vulnerability in the PRINT_ERROR function in common.c for Cherokee Web Server 0.4.16 and earlier allows local users to execute arbitrary code via format string specifiers in the -C command line argument. NOTE: it is not clear whether this issue could be exploited remotely, or if Cherokee is running at escalated privileges. Therefore it might not be a vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cherokee Web Server格式字符串漏洞
Vulnerability Description
Cherokee Web Server 0.4.16及其早期版本common.c文件中的PRINT_ERROR函数存在格式字符串漏洞,本地用户可以通过- c命令行参数中的格式字符串符执行任意代码。注意:问题是否能被远程利用或者Cherokee是否在提升的权限上运行还不清楚,因此,它可能不是一个漏洞。
CVSS Information
N/A
Vulnerability Type
N/A