4 matches found
FreeBSD Ports: gnu-finger
The remote host is missing an update to the system as announced in the referenced advisory. VID 610bc692-a2ad-11dc-900c-000bcdc1757a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: gnu-finger
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-1999-1165
GNU fingerd 1.37 is affected. The flaw is failure to drop privileges before accessing user information, enabling local attackers to (1) gain root via a malicious .fingerrc and (2) read arbitrary files via .plan/.forward/.project symbolic links. No patch/version or remediation is specified in the ...
CVE-1999-1165
GNU fingerd 1.37 does not properly drop privileges before accessing user information, which could allow local users to 1 gain root privileges via a malicious program in the .fingerrc file, or 2 read arbitrary files via symbolic links from .plan, .forward, or .project files...