Cfingerd Security Vulnerabilities and Issues — Cfingerd CVE List

Lucene search

InfodromCfingerd

5 matches found

CVE•added 2000/01/18 5:0 a.m.•60 views

CVE-1999-0259

cfingerd lists all users on a system via search.**@target.

5CVSS6.7AI score0.0061EPSS

CVE•added 2000/01/18 5:0 a.m.•43 views

CVE-1999-0708

Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field.

7.2CVSS9.1AI score0.00145EPSS

CVE•added 2001/08/02 4:0 a.m.•41 views

CVE-2001-0609

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.

10CVSS9.6AI score0.0991EPSS

CVE•added 2000/04/18 4:0 a.m.•35 views

CVE-1999-0813

Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.

7.2CVSS7AI score0.00067EPSS

CVE•added 2001/10/18 4:0 a.m.•35 views

CVE-2001-0735

Buffer overflow in cfingerd 1.4.3 and earlier with the ALLOW_LINE_PARSING option enabled allows local users to execute arbitrary code via a long line in the .nofinger file.

7.2CVSS7.3AI score0.002EPSS