Show filters
17 Total Results
Displaying 11-17 of 17
Sort by:
Attacker Value
Unknown
CVE-2001-0609
Disclosure Date: August 02, 2001 (last updated February 22, 2025)
Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.
0
Attacker Value
Unknown
CVE-1999-0708
Disclosure Date: September 21, 1999 (last updated February 22, 2025)
Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field.
0
Attacker Value
Unknown
CVE-1999-0813
Disclosure Date: August 10, 1999 (last updated February 22, 2025)
Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.
0
Attacker Value
Unknown
CVE-1999-1165
Disclosure Date: July 21, 1999 (last updated February 22, 2025)
GNU fingerd 1.37 does not properly drop privileges before accessing user information, which could allow local users to (1) gain root privileges via a malicious program in the .fingerrc file, or (2) read arbitrary files via symbolic links from .plan, .forward, or .project files.
0
Attacker Value
Unknown
CVE-1999-0150
Disclosure Date: July 01, 1997 (last updated February 22, 2025)
The Perl fingerd program allows arbitrary command execution from remote users.
0
Attacker Value
Unknown
CVE-1999-0259
Disclosure Date: May 23, 1997 (last updated February 22, 2025)
cfingerd lists all users on a system via search.**@target.
0
Attacker Value
Unknown
CVE-1999-0612
Disclosure Date: March 01, 1997 (last updated February 22, 2025)
A version of finger is running that exposes valid user information to any entity on the network.
0
