Lucene search

GoogleOSV:DSA-604-1

HistoryDec 03, 2004 - 12:00 a.m.

hpsockd - missing input sanitising

2004-12-0300:00:00

Google

osv.dev

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

“infamous41md” discovered a buffer overflow condition in hpsockd, the
socks server written at Hewlett-Packard. An exploit could cause the
program to crash or may have worse effect.

For the stable distribution (woody) this problem has been fixed in
version 0.6.woody1.

For the unstable distribution (sid) this problem has been fixed in
version 0.14.

We recommend that you upgrade your hpsockd package.

References

www.debian.org/security/2004/dsa-604

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

Related for OSV:DSA-604-1