Debian Security Advisory DSA 360-1 (xfstt)

The remote host is missing an update to xfstt announced via advisory DSA 360-1. OpenVAS Vulnerability Test $Id: deb3601.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 360-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

CVE-2003-0625

Off-by-one error in certain versions of xfstt allows remote attackers to read potentially sensitive memory via a malformed client request in the connection handshake, which leaks the memory in the server's response...

CVE-2003-0625

xfstt (Debian Woody stable) is affected by CVE-2003-0625 due to an off-by-one error that can allow remote attackers to read memory from the xfstt process during the connection handshake. The issue, part of CAN-2003-0625 alongside CAN-2003-0581, enables memory leakage that could aid fingerprinting...

CVE-2003-0625

Off-by-one error in certain versions of xfstt allows remote attackers to read potentially sensitive memory via a malformed client request in the connection handshake, which leaks the memory in the server's response...