Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-5033

Overview

Vulnerability Score 4.4 4.4
CVE Id CVE-2011-5033
Last Modified 30 Dec 2011 12:00:00
Published 29 Dec 2011 05:55:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2011-5033

Summary

Stack-based buffer overflow in CFS.c in ConfigServer Security & Firewall (CSF) before 5.43, when running on a DirectAdmin server, allows local users to cause a denial of service (crash) via a long string in an admin.list file.

Vulnerable Systems

Application

  • Configserver Security Firewall 5.00

  • Configserver Security Firewall 5.01

  • Configserver Security Firewall 5.02

  • Configserver Security Firewall 5.03

  • Configserver Security Firewall 5.04

  • Configserver Security Firewall 5.05

  • Configserver Security Firewall 5.06

  • Configserver Security Firewall 5.07

  • Configserver Security Firewall 5.08

  • Configserver Security Firewall 5.09

  • Configserver Security Firewall 5.10

  • Configserver Security Firewall 5.11

  • Configserver Security Firewall 5.12

  • Configserver Security Firewall 5.13

  • Configserver Security Firewall 5.14

  • Configserver Security Firewall 5.15

  • Configserver Security Firewall 5.16

  • Configserver Security Firewall 5.17

  • Configserver Security Firewall 5.18

  • Configserver Security Firewall 5.19

  • Configserver Security Firewall 5.20

  • Configserver Security Firewall 5.21

  • Configserver Security Firewall 5.22

  • Configserver Security Firewall 5.30

  • Configserver Security Firewall 5.31

  • Configserver Security Firewall 5.32

  • Configserver Security Firewall 5.33

  • Configserver Security Firewall 5.34

  • Configserver Security Firewall 5.35

  • Configserver Security Firewall 5.36

  • Configserver Security Firewall 5.37

  • Configserver Security Firewall 5.38

  • Configserver Security Firewall 5.39

  • Configserver Security Firewall 5.40

  • Configserver Security Firewall 5.41

  • Configserver Security Firewall 5.42


References

XF - csf-dacsf-bo(71758)

EXPLOIT-DB - 18225

CONFIRM - http://www.configserver.com/free/csf/changelog.txt

CONFIRM - http://forum.configserver.com/viewtopic.php?f=4&t=5008


Last Updated: 27 May 2016 10:57:58