Description
Format string vulnerability in Speedtouch USB driver before 1.3.1 allows local users to execute arbitrary code via (1) modem_run, (2) pppoa2, or (3) pppoa3.
Affected products
- gentoo / linux1.4 – 1.4
- mandrakesoft / mandrake_linux10.1 – 10.1
- mandrakesoft / mandrake_linux10.1 – 10.1
- mandrakesoft / mandrake_linux10.0 – 10.0
- mandrakesoft / mandrake_linux10.0 – 10.0
- mandrakesoft / mandrake_linux9.2 – 9.2
- mandrakesoft / mandrake_linux9.2 – 9.2
- mandrakesoft / mandrake_linux9.1 – 9.1
- mandrakesoft / mandrake_linux8.2 – 8.2
- mandrakesoft / mandrake_linux8.2 – 8.2
- mandrakesoft / mandrake_linux9.1 – 9.1
- mandrakesoft / mandrake_linux9.0 – 9.0
- mandrakesoft / mandrake_linux_corporate_server2.1 – 2.1
- mandrakesoft / mandrake_linux_corporate_server2.1 – 2.1
- mandrakesoft / mandrake_multi_network_firewall8.2 – 8.2
- speedtouch / speedtouch_usb_driver1.2_beta2 – 1.2_beta2
- speedtouch / speedtouch_usb_driver1.2_beta1 – 1.2_beta1
- speedtouch / speedtouch_usb_driver1.2 – 1.2
- speedtouch / speedtouch_usb_driver1.1 – 1.1
- speedtouch / speedtouch_usb_driver1.0 – 1.0
- speedtouch / speedtouch_usb_driver1.2_beta3 – 1.2_beta3
- speedtouch / speedtouch_usb_driver1.3 – 1.3