CVE Vulnerabilities

CVE-2001-0609

Published: Aug 02, 2001 | Modified: Dec 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.

Affected Software

Name Vendor Start Version End Version
Cfingerd Infodrom 1.4.0 1.4.0
Cfingerd Infodrom 1.4.1 1.4.1
Cfingerd Infodrom 1.4.2 1.4.2
Cfingerd Infodrom * 1.4.3

References