Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0625

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2003-0625
Last Modified 05 Sep 2008 04:34:48
Published 27 Aug 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0625

Summary

Off-by-one error in certain versions of xfstt allows remote attackers to read potentially sensitive memory via a malformed client request in the connection handshake, which leaks the memory in the server's response.

Vulnerable Systems

Application

  • Xfstt 1.2.1

  • Xfstt 1.4


References

DEBIAN - DSA-360

BID - 8255

BUGTRAQ - 20030727 [PAPER]: Address relay fingerprinting.

CONFIRM - http://developer.berlios.de/forum/forum.php?forum_id=2819


Last Updated: 27 May 2016 10:37:59