mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Netbsd | Netbsd | 1.4.1 (including) | 1.4.1 (including) |
| Netbsd | Netbsd | 1.4.2 (including) | 1.4.2 (including) |
| Openbsd | Openbsd | 2.4 (including) | 2.4 (including) |
| Openbsd | Openbsd | 2.5 (including) | 2.5 (including) |
| Openbsd | Openbsd | 2.6 (including) | 2.6 (including) |
| Openbsd | Openbsd | 2.7 (including) | 2.7 (including) |
| Linux | Redhat | 6.0 (including) | 6.0 (including) |
| Linux | Redhat | 6.1 (including) | 6.1 (including) |
| Linux | Redhat | 6.2 (including) | 6.2 (including) |
References
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0064.html
- http://archives.neohapsis.com/archives/freebsd/2000-08/0336.html
- http://cvsweb.netbsd.org/bsdweb.cgi/basesrc/usr.sbin/mopd/mopd/process.c.diff?r1=1.7\u0026r2=1.8\u0026f=h
- http://www.openbsd.org/errata.html#mopd
- http://www.redhat.com/support/errata/RHSA-2000-050.html
- http://www.securityfocus.com/bid/1559
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0064.html
- http://archives.neohapsis.com/archives/freebsd/2000-08/0336.html
- http://cvsweb.netbsd.org/bsdweb.cgi/basesrc/usr.sbin/mopd/mopd/process.c.diff?r1=1.7\u0026r2=1.8\u0026f=h
- http://www.openbsd.org/errata.html#mopd
- http://www.redhat.com/support/errata/RHSA-2000-050.html
- http://www.securityfocus.com/bid/1559