Lucene search
HistoryDec 29, 2011 - 10:55 p.m.
CVE-2011-5033
cve-2011-5033
buffer overflow
cfs.c
configserver security & firewall
csf
directadmin
denial of service
nvd
4.4 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
36.4%
Stack-based buffer overflow in CFS.c in ConfigServer Security & Firewall (CSF) before 5.43, when running on a DirectAdmin server, allows local users to cause a denial of service (crash) via a long string in an admin.list file.
Affected configurations
Node
configserverconfigserver_security_firewallRange≤5.42
ORconfigserverconfigserver_security_firewallMatch5.00
ORconfigserverconfigserver_security_firewallMatch5.01
ORconfigserverconfigserver_security_firewallMatch5.02
ORconfigserverconfigserver_security_firewallMatch5.03
ORconfigserverconfigserver_security_firewallMatch5.04
ORconfigserverconfigserver_security_firewallMatch5.05
ORconfigserverconfigserver_security_firewallMatch5.06
ORconfigserverconfigserver_security_firewallMatch5.07
ORconfigserverconfigserver_security_firewallMatch5.08
ORconfigserverconfigserver_security_firewallMatch5.09
ORconfigserverconfigserver_security_firewallMatch5.10
ORconfigserverconfigserver_security_firewallMatch5.11
ORconfigserverconfigserver_security_firewallMatch5.12
ORconfigserverconfigserver_security_firewallMatch5.13
ORconfigserverconfigserver_security_firewallMatch5.14
ORconfigserverconfigserver_security_firewallMatch5.15
ORconfigserverconfigserver_security_firewallMatch5.16
ORconfigserverconfigserver_security_firewallMatch5.17
ORconfigserverconfigserver_security_firewallMatch5.18
ORconfigserverconfigserver_security_firewallMatch5.19
ORconfigserverconfigserver_security_firewallMatch5.20
ORconfigserverconfigserver_security_firewallMatch5.21
ORconfigserverconfigserver_security_firewallMatch5.22
ORconfigserverconfigserver_security_firewallMatch5.30
ORconfigserverconfigserver_security_firewallMatch5.31
ORconfigserverconfigserver_security_firewallMatch5.32
ORconfigserverconfigserver_security_firewallMatch5.33
ORconfigserverconfigserver_security_firewallMatch5.34
ORconfigserverconfigserver_security_firewallMatch5.35
ORconfigserverconfigserver_security_firewallMatch5.36
ORconfigserverconfigserver_security_firewallMatch5.37
ORconfigserverconfigserver_security_firewallMatch5.38
ORconfigserverconfigserver_security_firewallMatch5.39
ORconfigserverconfigserver_security_firewallMatch5.40
ORconfigserverconfigserver_security_firewallMatch5.41
directadmindirectadmin_server
Related
cvelist
cvelist
CVE-2011-5033
2011-12-29 22:00:00
prion
prion
Stack overflow
2011-12-29 22:55:00
nvd
nvd
CVE-2011-5033
2011-12-29 22:55:02
4.4 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
6.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
36.4%
Related for CVE-2011-5033