2 matches found
CVE-2000-0915
fingerd in FreeBSD 4.1.1 allows remote attackers to read arbitrary files by specifying the target file name instead of a regular user name...
CVE-2000-0915
The CVE-2000-0915 issue affects the FreeBSD finger daemon on version 4.1.1, where a remote attacker can read arbitrary files by specifying the target file name instead of a user name (e.g., finger /etc/passwd@target). The root cause is improper handling of the file-path argument by fingerd, enabl...