Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1099

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2005-1099
Last Modified 05 Sep 2008 04:48:12
Published 12 Apr 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-1099

Summary

Multiple buffer overflows in the HandleChild function in server.c in Greylisting daemon (GLD) 1.3 and 1.4, when GLD is listening on a network interface, allow remote attackers to execute arbitrary code.

Vulnerable Systems

Application

  • Salim Gasmi Gld 1.0

  • Salim Gasmi Gld 1.1

  • Salim Gasmi Gld 1.2

  • Salim Gasmi Gld 1.3

  • Salim Gasmi Gld 1.3.1

  • Salim Gasmi Gld 1.4


References

OSVDB - 15492

GENTOO - GLSA-200504-10

SECUNIA - 14941

XF - gld-serverc-bo(20066)

CONFIRM - http://www.gasmi.net/down/gld-history

SECTRACK - 1013678

BUGTRAQ - 20050413 Gld 1.5 released (security fix)

BUGTRAQ - 20050412 GLD (Greylisting daemon for Postfix) multiple vulnerabilities.


Last Updated: 27 May 2016 10:40:02