Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0609

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2001-0609
Last Modified 10 Sep 2008 03:08:30
Published 02 Aug 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0609

Summary

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.

Vulnerable Systems

Application

  • Infodrom Cfingerd 1.4.0

  • Infodrom Cfingerd 1.4.1

  • Infodrom Cfingerd 1.4.2

  • Infodrom Cfingerd 1.4.3


References

XF - cfingerd-remote-format-string(6364)

BID - 2576

BUGTRAQ - 20010411 CFINGERD remote vulnerability


Last Updated: 27 May 2016 10:36:20