CVE-2006-0743

Use of Externally-Controlled Format String in nuget/log4net

Identifiers

GHSA-f9fr-w54q-772h, CVE-2006-0743

Package Slug

nuget/log4net

Vulnerability

Use of Externally-Controlled Format String

Description

Format string vulnerability in LocalSyslogAppender in Apache log4net 1.2.9 might allow remote attackers to cause a denial of service (memory corruption and termination) via unknown vectors.

Affected Versions

All versions up to 1.2.9

Solution

Upgrade to version 1.2.10 or above.

Last Modified

2024-02-12

source