Published: 14/03/2013 Updated: 19/03/2013

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in the RFC1413 (ident) client in cfingerd 1.4.3-3 allows remote IDENT servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted response.

Vulnerable Product	Search on Vulmon	Subscribe to Product
debian cfingerd 1.4.3-3

Debian Bug report logs - #700098 cfingerd: CVE-2013-1049 remote buffer overflow Package: cfingerd; Maintainer for cfingerd is Martin Schulze <joey@debianorg>; Source for cfingerd is src:cfingerd (PTS, buildd, popcon) Reported by: Marc Deslauriers <marcdeslauriers@ubuntucom> Date: Fri, 8 Feb 2013 18:06:01 UTC Sev ...

Malcolm Scott discovered a remote-exploitable buffer overflow in the RFC1413 (ident) client of cfingerd, a configurable finger daemon This vulnerability was introduced in a previously applied patch to the cfingerd package in 143-3 For the stable distribution (squeeze), this problem has been fixed in version 143-3+squeeze1 For the testing dis ...

CWE-119 https://bugs.launchpad.net/ubuntu/+source/cfingerd/+bug/1104425 http://www.debian.org/security/2013/dsa-2635 http://osvdb.org/90747 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700098 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700098 https://nvd.nist.gov https://www.debian.org/security/./dsa-2635

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-1049

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect