EUVD-2001-1196

Malware in sbrugna...

EUVD-2002-2027

Malware in sbrugna...

CVE-2002-2048

PFinger 0.7.8 client is affected by a buffer overflow when processing long query values in the finger, -l, -d, or -t options. The issue permits remote code execution if the vulnerable binary is setuid/setgid; otherwise privilege boundaries may not be crossed. Affected component is PFinger 0.7.8 c...

CVE-2002-2048

Buffer overflow in PFinger 0.7.8 client allows remote attackers to execute arbitrary code via a long query value passed to the 1 finger program, 2 -l, 3 -d, and 4 -t options. NOTE: if PFinger is not setuid or setgid, then this issue would not cross privilege boundaries and would not be considered...

CVE-2002-2048

Buffer overflow in PFinger 0.7.8 client allows remote attackers to execute arbitrary code via a long query value passed to the 1 finger program, 2 -l, 3 -d, and 4 -t options. NOTE: if PFinger is not setuid or setgid, then this issue would not cross privilege boundaries and would not be considered...

CVE-2001-1215

PFinger 0.7.5–0.7.7 is affected by a format-string vulnerability in .plan files that allows remote code execution. The issue arises from format specifiers used in a .plan, enabling an attacker to execute arbitrary code on affected systems. Affected component: PFinger (versions 0.7.5–0.7.7). Root ...

CVE-2001-1215

Format string vulnerability in PFinger 0.7.5 through 0.7.7 allows remote attackers to execute arbitrary code via format string specifiers in a .plan file...

[CERT-intexxia] pfinger Format String Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SECURITY ADVISORY INTEXXIAc 18 12 2001 ID 1050-181201 TITLE : pfinger Format String Vulnerability CREDITS : Guillaume Pelat / INTEXXIA SYSTEM AFFECTED =============== pfinger = 0.7.7 DESCRIPTION =========== pfinger is a finger daemon written in C. It ...

CVE-2001-1215

Format string vulnerability in PFinger 0.7.5 through 0.7.7 allows remote attackers to execute arbitrary code via format string specifiers in a .plan file...