CVE-2013-1049

Sažetak

Buffer overflow in the RFC1413 (ident) client in cfingerd 1.4.3-3 allows remote IDENT servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted response.

Reference

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700098
http://osvdb.org/90747
http://www.debian.org/security/2013/dsa-2635
https://bugs.launchpad.net/ubuntu/+source/cfingerd/+bug/1104425

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

19-03-2013 - 04:00

Objavljeno

14-03-2013 - 03:13