24 matches found
CVE-1999-0152
The DG/UX finger daemon allows remote command execution through shell metacharacters...
EUVD-2001-1480
Malware in sbrugna...
EUVD-2002-2070
Malware in sbrugna...
EUVD-2007-4293
Malware in sbrugna...
CVE-2002-2091
Format string vulnerability in Deception Finger Daemon, decfingerd, 0.7 may allow remote attackers to execute arbitrary code via the username of a finger request...
Command injection
The finger daemon in.fingerd in Sun Solaris 7 through 9 allows remote attackers to list all accounts that have certain nonstandard GECOS fields via a request composed of a single digit, as demonstrated by a "finger 9@host" command, a different vulnerability than CVE-2001-1503...
CVE-2007-4310
The finger daemon in.fingerd in Sun Solaris 7 through 9 allows remote attackers to list all accounts that have certain nonstandard GECOS fields via a request composed of a single digit, as demonstrated by a "finger 9@host" command, a different vulnerability than CVE-2001-1503...
CVE-2007-4310
CVE-2007-4310 concerns the Sun Solaris finger daemon (in.fingerd) on Solaris 7–9. The vulnerability allows remote attackers to list accounts that have certain nonstandard GECOS fields by sending a request consisting of a single digit (e.g., finger 9@host). The issue is separate from CVE-2001-1503...
CVE-2007-4310
The finger daemon in.fingerd in Sun Solaris 7 through 9 allows remote attackers to list all accounts that have certain nonstandard GECOS fields via a request composed of a single digit, as demonstrated by a "finger 9@host" command, a different vulnerability than CVE-2001-1503...
akfingerd
The remote finger service appears to vulnerable to a remote attack which can disrupt the service of the finger daemon. This denial of service does not effect other services that may be running on the remote computer, only the finger service can be disrupted. akfingerd version 0.5 or earlier is...
fingerd buffer overflow
The scanner was able to crash the remote finger daemon by sending a too long request. SPDX-FileCopyrightText: 2005 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
fingerd buffer overflow
OpenVAS was able to crash the remote finger daemon by sending a too long request. This flaw is probably a buffer overflow and might be exploitable to run arbitrary code on this machine. OpenVAS Vulnerability Test $Id: fingeroverflow.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: fingerd...
CVE-2002-2091
CVE-2002-2091 affects Deception Finger Daemon (decfingerd) 0.7, exposing a format-string vulnerability in the username field of a finger request that could allow remote code execution. The issue is documented across multiple sources (e.g., NVD, Red Hat advisory, CVE list) with the impact describe...
CVE-2002-2091
Format string vulnerability in Deception Finger Daemon, decfingerd, 0.7 may allow remote attackers to execute arbitrary code via the username of a finger request...
FKey Arbitrary Remote File Disclosure
The remote finger daemon possibly 'fkey' allows users to read arbitrary files by supplying a file name that is 10 characters or shorter. A remote attacker could exploit this to read sensitive information, which could be used to mount further attacks. C Tenable Network Security, Inc...
CVE-2002-2091
Format string vulnerability in Deception Finger Daemon, decfingerd, 0.7 may allow remote attackers to execute arbitrary code via the username of a finger request...
CVE-2001-1503
The finger daemon in.fingerd in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host...
Solaris in.fingerd Unused Accounts Disclosure
The remote Solaris finger daemon will return a list of accounts that have never been used when it receives the request : finger 'a b c d e f g h'@target A remote attacker could use this information to guess which operating system is running, or to mount further attacks on these accounts. C Tenabl...
CVE-1999-0152
The DG/UX finger daemon allows remote command execution through shell metacharacters...
CVE-1999-0152
The CVE-1999-0152 issue affects the DG/UX finger daemon, where remote command execution is possible via shell metacharacters. Multiple connected sources corroborate that an attacker can trigger arbitrary commands on a target system, potentially gaining a shell. Documented impact is remote executi...