Lucene search
UbuntuUSN-955-1HistoryJun 21, 2010 - 12:00 a.m.
OPIE vulnerability
2010-06-2100:00:00
ubuntu.com
64
9.3 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.869 High
EPSS
Percentile
98.6%
Releases
- Ubuntu 10.04
- Ubuntu 9.10
- Ubuntu 9.04
Packages
- opie -
Details
Maksymilian Arciemowicz and Adam Zabrocki discovered that OPIE incorrectly
handled long usernames. A remote attacker could exploit this with a crafted
username and make applications linked against libopie crash, leading to a
denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 9.10 | noarch | libopie-dev | < 2.40~dfsg-0ubuntu1.9.10.1 | UNKNOWN |
| Ubuntu | 9.10 | noarch | opie-client | < 2.40~dfsg-0ubuntu1.9.10.1 | UNKNOWN |
| Ubuntu | 9.10 | noarch | opie-server | < 2.40~dfsg-0ubuntu1.9.10.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libopie-dev | < 2.40~dfsg-0ubuntu1.9.04.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | opie-client | < 2.40~dfsg-0ubuntu1.9.04.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | opie-server | < 2.40~dfsg-0ubuntu1.9.04.1 | UNKNOWN |
| Ubuntu | 10.04 | noarch | libopie-dev | < 2.40~dfsg-0ubuntu1.10.04.1 | UNKNOWN |
| Ubuntu | 10.04 | noarch | opie-client | < 2.40~dfsg-0ubuntu1.10.04.1 | UNKNOWN |
| Ubuntu | 10.04 | noarch | opie-server | < 2.40~dfsg-0ubuntu1.10.04.1 | UNKNOWN |
References
Related
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-10:05.opie.asc)
2010-06-03 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-10:05.opie.asc)
2010-06-03 00:00:00
FreeBSD Ports: FreeBSD
2010-11-17 00:00:00
nessus
nessus
Ubuntu 9.04 / 9.10 / 10.04 LTS : opie vulnerability (USN-955-1)
2013-03-09 00:00:00
Ubuntu 9.04 / 9.10 / 10.04 LTS : libpam-opie vulnerability (USN-955-2)
2010-06-22 00:00:00
Debian DSA-2281-1 : opie - several vulnerabilities
2011-07-22 00:00:00
exploitpack
exploitpack
FreeBSD 8.0 - ftpd (FreeBSD-SA-10:05) Off-By-One (PoC)
2010-05-27 00:00:00
ubuntucve
ubuntucve
CVE-2010-1938
2010-05-28 00:00:00
seebug
seebug
FreeBSD OPIE实现__opiereadrec()函数单字节栈溢出漏洞
2010-05-31 00:00:00
FreeBSD 8.0 ftpd off-by one PoC (FreeBSD-SA-10:05)
2010-05-28 00:00:00
checkpoint_advisories
checkpoint_advisories
freebsd_advisory
freebsd_advisory
FreeBSD-SA-10:05.opie
2010-05-27 00:00:00
cve
cve
CVE-2010-1938
2010-05-28 18:30:00
securityvulns
securityvulns
FreeBSD OPIE library off-by-one overflow
2010-05-28 00:00:00
FreeBSD Security Advisory FreeBSD-SA-10:05.opie
2010-05-28 00:00:00
[SECURITY] [DSA 2281-1] opie security update
2011-07-26 00:00:00
packetstorm
packetstorm
FreeBSD 8.0 ftpd Off-By-One Proof Of Concept
2010-05-28 00:00:00
ubuntu
ubuntu
libpam-opie vulnerability
2010-06-21 00:00:00
prion
prion
Command injection
2010-05-28 18:30:00
exploitdb
exploitdb
FreeBSD 8.0 - 'ftpd' (FreeBSD-SA-10:05) Off-By-One (PoC)
2010-05-27 00:00:00
debian
debian
[SECURITY] [DSA 2281-1] opie security update
2011-07-21 11:09:17
nmap
nmap
ftp-libopie NSE Script
2010-06-21 20:25:11
osv
osv
opie - several
2011-07-21 00:00:00
9.3 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.869 High
EPSS
Percentile
98.6%
Related for USN-955-1