CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2015-3243
https://notcve.org/view.php?id=CVE-2015-3243
25 Jul 2017 — rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron. rsyslog utiliza permisos débiles para generar archivos de registro, lo que permite a los usuarios locales obtener información confidencial mediante la lectura de archivos en /var/log/cron. • http://www.openwall.com/lists/oss-security/2015/06/18/12 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 9.8EPSS: 2%CPEs: 26EXPL: 1CVE-2014-3683 – Mandriva Linux Security Advisory 2014-196
https://notcve.org/view.php?id=CVE-2014-3683
09 Oct 2014 — Integer overflow in rsyslog before 7.6.7 and 8.x before 8.4.2 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash) via a large priority (PRI) value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3634. Desbordamiento de enteros en rsyslog anterior a 7.6.7 y 8.x anterior a 8.4.2 y sysklogd 1.5 y anteriores permite a atacantes remotos causar una denegación de servicio (caída) a través de un valor de prioridad (PRI) grande. NOTA: esta vulnerabilid... • http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00005.html • CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 34%CPEs: 25EXPL: 1CVE-2014-3634 – rsyslog: remote syslog PRI vulnerability
https://notcve.org/view.php?id=CVE-2014-3634
01 Oct 2014 — rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash), possibly execute arbitrary code, or have other unspecified impact via a crafted priority (PRI) value that triggers an out-of-bounds array access. rsyslog anterior a 7.6.6 y 8.x anterior a 8.4.1 y sysklogd 1.5 y anteriores permiten a atacantes remotos causar una denegación de servicio (caída), posiblemente ejecutar código arbitrario o tener otro impacto no especificado a través... • http://advisories.mageia.org/MGASA-2014-0411.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 1%CPEs: 42EXPL: 0CVE-2013-4758 – rsyslog ElasticSearch Memory Corruption
https://notcve.org/view.php?id=CVE-2013-4758
05 Jul 2013 — Double free vulnerability in the writeDataError function in the ElasticSearch plugin (omelasticsearch) in rsyslog before 7.4.2 and before 7.5.2 devel, when errorfile is set to local logging, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted JSON response. Vulnerabilidad de doble liberación en la función writeDataError en el plugin Elasticsearch (omelasticsearch) en rsyslog anterior a 7.4.2 y anterior a 7.5.2 devel, cuando un errorfile se establece... • http://www.openwall.com/lists/oss-security/2013/07/05/2 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 72EXPL: 0CVE-2011-4623 – rsyslog: DoS due integer signedness error while extending rsyslog counted string buffer
https://notcve.org/view.php?id=CVE-2011-4623
25 Sep 2012 — Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of service (daemon hang) via a large file, which triggers a heap-based buffer overflow. Desbordamiento de entero en la función rsCStrExtendBuf en runtime/stringbuf.c en el módulo imfile en rsyslog v4.x anteriores v4.6.6, v5.x anteriores a v5.7.4, y v6.x anteriores a v6.1.4, permite a atacantes remotos provocar un... • http://bugzilla.adiscon.com/show_bug.cgi?id=221 • CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 62%CPEs: 51EXPL: 1CVE-2011-3200 – rsyslog: parseLegacySyslogMsg off-by-two buffer overflow
https://notcve.org/view.php?id=CVE-2011-3200
06 Sep 2011 — Stack-based buffer overflow in the parseLegacySyslogMsg function in tools/syslogd.c in rsyslogd in rsyslog 4.6.x before 4.6.8 and 5.2.0 through 5.8.4 might allow remote attackers to cause a denial of service (application exit) via a long TAG in a legacy syslog message. Un desbordamiento de búfer basado en la pila en la función parseLegacySyslogMsg en tools/syslogd.c en rsyslogd en rsyslog v4.6.x antes de v4.6.8 y v5.2.0 hasta la v5.8.4 podría permitir a atacantes remotos provocar una denegación de servicio ... • https://packetstorm.news/files/id/180541 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.5EPSS: 0%CPEs: 28EXPL: 0CVE-2008-5617
https://notcve.org/view.php?id=CVE-2008-5617
17 Dec 2008 — The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does not follow $AllowedSender directive, which allows remote attackers to bypass intended access restrictions and spoof log messages or create a large number of spurious messages. El manejador ACL de rsyslog v3.12.1 hasta v3.20.0, v4.1.0 y v4.1.1, no sigue la directiva $AllowSender, lo que permite a atacantes remotos evitar las restricciones de acceso pretendidas y falsear los mensajes de registro (log) o crear un gran número de mensajes falsos... • http://secunia.com/advisories/32857 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2008-5618
https://notcve.org/view.php?id=CVE-2008-5618
17 Dec 2008 — imudp in rsyslog 4.x before 4.1.2, 3.21 before 3.21.9 beta, and 3.20 before 3.20.2 generates a message even when it is sent by an unauthorized sender, which allows remote attackers to cause a denial of service (disk consumption) via a large number of spurious messages. imudp en rsyslog 4.x versiones anteriores a 4.1.2, 3.21 versiones anteriores a 3.21.9 beta, y 3.20 versiones anteriores a 3.20.2 genera un mensaje aún cuando es enviado por un remitente no autorizado, el cual permite a los atacantes remoto ca... • http://www.rsyslog.com/Topic4.phtml •
CVSS: 9.8EPSS: 0%CPEs: 17EXPL: 0CVE-2005-3074
https://notcve.org/view.php?id=CVE-2005-3074
27 Sep 2005 — SQL injection vulnerability in rsyslogd in RSyslog before 1.0.1 and before 1.10.1 allows remote attackers to execute arbitrary SQL commands via crafted syslog messages. • http://secunia.com/advisories/16947 •