Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1019

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-1019
Last Modified 05 Sep 2008 04:47:58
Published 02 May 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-1019

Summary

Buffer overflow in the getConfig function in Aeon 0.2a and earlier allows local users to gain privileges via a long HOME environment variable.

Vulnerable Systems

Application

  • Aeon 0.1.8

  • Aeon 0.1.9

  • Aeon 0.2

  • Aeon 0.2a


References

XF - aeon-getconfig-bo(19951)

MISC - http://security-tmp.h14.ru/exploits/23laeon.c.txt

BUGTRAQ - 20050404 Local buffer overflow on Aeon<=0.2a


Last Updated: 27 May 2016 10:40:00