CVE Vulnerabilities

CVE-2001-0735

Published: Oct 18, 2001 | Modified: Dec 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in cfingerd 1.4.3 and earlier with the ALLOW_LINE_PARSING option enabled allows local users to execute arbitrary code via a long line in the .nofinger file.

Affected Software

Name Vendor Start Version End Version
Cfingerd Infodrom 1.4.1 1.4.1
Cfingerd Infodrom 1.4.2 1.4.2
Cfingerd Infodrom 1.4.3 1.4.3

References