fingerd in FreeBSD 4.1.1 allows remote attackers to read arbitrary files by specifying the target file name instead of a regular user name.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Freebsd |
Freebsd |
4.1.1-release (including) |
4.1.1-release (including) |
References