← CVECheck
HomeVulnerabilities

CVE-2004-0536 — HIGH severity vulnerability (Format string vulnerability in Tripwire commercial 4.0.1 and)

Format string vulnerability in Tripwire commercial 4.0.1 and earlier, including 2.4, and open source 2.3.1 and earlier, allows local users to gain privileges via format string specifiers in a file name, which is used in the generation of an email report.

CVE IDCVE-2004-0536
SeverityHIGH
CVSS score7.2
CVSS vectorAV:L/AC:L/Au:N/C:C/I:C/A:C
CWENVD-CWE-Other
StatusModified
Published2004-08-06
Last modified2026-04-16
DescriptionFormat string vulnerability in Tripwire commercial 4.0.1 and earlier, including 2.4, and open source 2.3.1 and earlier, allows local users to gain privileges via format string specifiers in a file name, which is used in the generation of an email report.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →