17 matches found
EUVD-2002-2222
Malware in sbrugna...
EUVD-2002-2223
Malware in sbrugna...
EUVD-2002-2252
Malware in sbrugna...
CVE-2002-2274
akfingerd 0.5 allows local users to read arbitrary files as the akfingerd user nobody via a symlink attack on the .plan file...
CVE-2002-2274
Affected software: akfingerd 0.5 (and earlier per linked records). Vulnerable component: the .plan file handling in akfingerd, exploited via a symlink attack that lets local users read arbitrary files as the akfingerd user (nobody). Impact: local read access to arbitrary files; CVSS notes show lo...
CVE-2002-2244
Akfingerd 0.5 and earlier versions allow local users to cause a denial of service crash via a .plan with a symlink to /dev/urandom or other device, then disconnecting while data is being transferred, which causes a SIGPIPE error that Akfingerd cannot handle...
CVE-2002-2243
CVE-2002-2243 affects akfingerd (0.5 and possibly earlier). The issue is a denial-of-service vulnerability where the daemon allows only one connection at a time and does not time out connections, enabling an attacker to cause refused connections by opening a connection and not closing it. Connect...
CVE-2002-2244
CVE-2002-2244 affects Akfingerd 0.5 and earlier. The vulnerability arises when a local user exploits a .plan containing a symlink to /dev/urandom (or another device) and disconnects during data transfer, causing Akfingerd to receive a SIGPIPE it cannot handle, resulting in a denial of service (cr...
CVE-2002-2243
Akfingerd 0.5 and possibly earlier versions only allows one connection at a time and does not time out connections, which allows remote attackers to cause a denial of service refused connections by opening a connection and not closing it...
akfingerd
The remote finger service appears to vulnerable to a remote attack which can disrupt the service of the finger daemon. This denial of service does not effect other services that may be running on the remote computer, only the finger service can be disrupted. akfingerd version 0.5 or earlier is...
akfingerd <= 0.5 Multiple Vulnerabilities
The remote finger service appears to be vulnerable to a remote attack which can disrupt the service of the finger daemon. This denial of service does not effect other services that may be running on the remote computer, only the finger service can be disrupted. SPDX-FileCopyrightText: 2002 Andrew...
CVE-2002-2243
Akfingerd 0.5 and possibly earlier versions only allows one connection at a time and does not time out connections, which allows remote attackers to cause a denial of service refused connections by opening a connection and not closing it...
CVE-2002-2244
Akfingerd 0.5 and earlier versions allow local users to cause a denial of service crash via a .plan with a symlink to /dev/urandom or other device, then disconnecting while data is being transferred, which causes a SIGPIPE error that Akfingerd cannot handle...
CVE-2002-2274
akfingerd 0.5 allows local users to read arbitrary files as the akfingerd user nobody via a symlink attack on the .plan file...
akfingerd 0.5 Multiple Vulnerabilities
The remote finger service appears to vulnerable to a remote attack which can disrupt the service of the finger daemon. This denial of service does not affect other services that may be running on the remote computer, only the finger service can be disrupted. akfingerd version 0.5 or earlier is...
Multiple akfingerd bugs
Symbolic links, undropped egid, DoS...
Multiple vulnerabilities in akfingerd
INSERT ASCII BANNER AND ADVERTISING HERE PRODUCT. akfingerd http://synflood.at/akfingerd/ EXPLOIT-ID. ECSC Ltd. Official K-R4d E-Security Advertisory. KR4D-VULN-ID-0-000-000-000-000-000-000-000-001 IMPORTANT SOUNDING DESCRIPTION. Akfingerd is a 'secure' finger server used by noone blah blah...