cve/2006/CVE-2006-2409.md

### [CVE-2006-2409](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2409)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Format string vulnerability in the raydium_log function in console.c in Raydium before SVN revision 310 allows local users to execute arbitrary code via format string specifiers in the format parameter, which are not properly handled in a call to raydium_console_line_add.

### POC

#### Reference
- http://aluigi.altervista.org/adv/raydiumx-adv.txt
- http://securityreason.com/securityalert/900

#### Github
No PoCs found on GitHub currently.
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2006-2409](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2409)`
			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)`

			`### Description`

			`Format string vulnerability in the raydium_log function in console.c in Raydium before SVN revision 310 allows local users to execute arbitrary code via format string specifiers in the format parameter, which are not properly handled in a call to raydium_console_line_add.`

			`### POC`

			`#### Reference`
			`- http://aluigi.altervista.org/adv/raydiumx-adv.txt`
			`- http://securityreason.com/securityalert/900`

			`#### Github`
			`No PoCs found on GitHub currently.`