Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2005-1019

Published: 02/05/2005 Updated: 11/07/2017
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 730
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Aeon

Vulnerability Summary

Buffer overflow in the getConfig function in Aeon 0.2a and previous versions allows local users to gain privileges via a long HOME environment variable.

Vulnerable Product Search on Vulmon Subscribe to Product

aeon aeon 0.1.8

aeon aeon 0.1.9

aeon aeon 0.2

aeon aeon 0.2a

Exploits

Exploit DB: Aeon 0.2a - Local Linux (2)
/* first release /str0ke */ /* local linux exploit within aeon-02a Coded by patr0n (security-tmph14ru) */ #define BUFLEN 533 #define PATH "/home/research/aeon-02a/aeon" char shellcode[]= "\x31\xc0\x31\xdb\xb0\x17\xcd\x80" "\xb0\x2e\xcd\x80\xeb\x15\x5b\x31" "\xc0\x88\x43\x07\x89\x5b\x08\x89" "\x43\x0c\x8d\x4b\x08\x31\xd2\xb0" "\x0b\xcd\x80\xe ...
Exploit DB: Aeon 0.2a - Local Linux (1)
#!/usr/bin/perl # Aeon-mail relay agent for Linux * # * # written by lammat just for practice purposes * # tested against aeon-02a ...

References

NVD-CWE-Otherhttp://security-tmp.h14.ru/exploits/23laeon.c.txthttp://marc.info/?l=bugtraq&m=111262942708249&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/19951https://nvd.nist.govhttps://www.exploit-db.com/exploits/914/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook