4 matches found
Debian DSA-066-1 : cfingerd - remote exploit
Steven van Acker reported on bugtraq that the version of cfingerd a configurable finger daemon as distributed in Debian GNU/Linux 2.2 suffers from two problems : - The code that reads configuration files files in which $ commands are expanded copied its input to a buffer without checking for a...
cfingerd < 1.4.4 Multiple Vulnerabilities
Binary data 1279.prm...
Локальные дыры в cfingerd (buffer overflow, format string)
Переполнение буфера и ошибка форматной строки при разборе файла конфигурации пользователя...
cfingerd < 1.4.4 Multiple Vulnerabilities
The version of cfingerd running on the remote host has multiple vulnerabilities, including : - A local buffer overflow in the GECOS field, which can be used to escalate privileges. - A format string vulnerability, triggered by a malformed ident reply. This can be used to execute arbitrary code. -...