nd Overflow

2003-11-29T04:01:56
ID OSVDB:3329
Type osvdb
Reporter OSVDB
Modified 2003-11-29T04:01:56

Description

Vulnerability Description

A remote overflow exists in nd. The vendor announced the vulnerability and did not release details. With a specially crafted request, a malicious web server operator can cause arbitrary code to execute resulting in a loss of confidentiality, integrity, and/or availability.

Solution Description

Upgrade to version 0.8.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in nd. The vendor announced the vulnerability and did not release details. With a specially crafted request, a malicious web server operator can cause arbitrary code to execute resulting in a loss of confidentiality, integrity, and/or availability.

References:

Vendor URL: http://www.gohome.org/nd/ Secunia Advisory ID:10549 CVE-2004-0014