PCAL 4.x Calendar File get_holiday Buffer Overflow Vulnerability

ID EDB-ID:25036
Type exploitdb
Reporter Danny Lungstrom
Modified 2004-12-15T00:00:00


PCAL 4.x Calendar File get_holiday Buffer Overflow Vulnerability. CVE-2004-1289. Remote exploit for linux platform

                                            source: http://www.securityfocus.com/bid/12036/info

PCAL is prone to a buffer overflow vulnerability. This issue is exposed when the application handles a calendar file that contains excessively long holiday data. Since calendar files may originate from an external or untrusted source, this vulnerability is considered to be remote in nature.

Successful exploitation of this issue will result in execution of arbitrary code as the user of the application.