Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0353

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0353
Last Modified 05 Sep 2008 04:38:12
Published 23 Nov 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0353

Summary

Multiple buffer overflows in auth_ident() function in auth.c for GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to gain privileges via a long string.

Vulnerable Systems

Application

  • Gnu Anubis 3.6.0

  • Gnu Anubis 3.6.1

  • Gnu Anubis 3.6.2

  • Gnu Anubis 3.9.92

  • Gnu Anubis 3.9.93


References

BID - 9772

XF - anubis-ident-bo(15345)

BUGTRAQ - 20040310 GNU Anubis 3.6.2 remote root exploit

BUGTRAQ - 20040304 GNU Anubis buffer overflows and format string bugs

MLIST - [bug-anubis] 20040228 Important security update


Last Updated: 27 May 2016 10:38:34