source: http://www.securityfocus.com/bid/13273/info Logwatch is prone to a denial of vulnerability in the secure script. This issue may be exploited by a local attacker who can inject a malicious string into a log file, causing a denial of service condition. As a result, the utility may not detect subsequent malicious activity. ogger -p authpriv.notice '+++ connection closed by localhost +++'
Related ExploitsTrying to match CVEs (1): CVE-2005-1061
Trying to match OSVDBs (1): 15708
Other Possible E-DB Search Terms: Logwatch 2.6 Secure Script, Logwatch
|2002-03-27||LogWatch 2.1.1/2.5 - Insecure Temporary Directory Creation||spybreak|
|2011-02-24||Logwatch Log File - Special Characters Privilege Escalation||Dominik George|