Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3863

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3863
Last Modified 04 Aug 2011 12:00:00
Published 29 Nov 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3863

Summary

Stack-based buffer overflow in kkstrtext.h in ktools library 0.3 and earlier, as used in products such as (1) centericq, (2) orpheus, (3) motor, and (4) groan, allows local users or remote attackers to execute arbitrary code via a long parameter to the VGETSTRING macro.

Vulnerable Systems

Application

  • Ktools 0.3


References

DEBIAN - DSA-1088

DEBIAN - DSA-1083

SECUNIA - 20446

SECUNIA - 20368

SECUNIA - 18081

XF - ktools-kkstrtext-bo(23233)

MISC - http://www.zone-h.org/en/advisories/read/id=8480/

VUPEN - ADV-2006-2062

VUPEN - ADV-2005-2605

BID - 15600

BUGTRAQ - 20051127 ZRCSA-200503 - ktools Buffer Overflow Vulnerability

OSVDB - 21161

GENTOO - GLSA-200608-27

GENTOO - GLSA-200512-11

SECUNIA - 21684

SECUNIA - 20329

SECUNIA - 17768


Last Updated: 27 May 2016 10:41:04