Show filters
7 Total Results
Displaying 1-7 of 7
Sort by:
Attacker Value
Unknown
CVE-2013-1049
Disclosure Date: March 14, 2013 (last updated October 05, 2023)
Buffer overflow in the RFC1413 (ident) client in cfingerd 1.4.3-3 allows remote IDENT servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted response.
0
Attacker Value
Unknown
CVE-2002-2091
Disclosure Date: December 31, 2002 (last updated February 22, 2025)
Format string vulnerability in Deception Finger Daemon, decfingerd, 0.7 may allow remote attackers to execute arbitrary code via the username of a finger request.
0
Attacker Value
Unknown
CVE-2001-0735
Disclosure Date: October 18, 2001 (last updated February 22, 2025)
Buffer overflow in cfingerd 1.4.3 and earlier with the ALLOW_LINE_PARSING option enabled allows local users to execute arbitrary code via a long line in the .nofinger file.
0
Attacker Value
Unknown
CVE-2001-0609
Disclosure Date: August 02, 2001 (last updated February 22, 2025)
Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.
0
Attacker Value
Unknown
CVE-1999-0708
Disclosure Date: September 21, 1999 (last updated February 22, 2025)
Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field.
0
Attacker Value
Unknown
CVE-1999-0813
Disclosure Date: August 10, 1999 (last updated February 22, 2025)
Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.
0
Attacker Value
Unknown
CVE-1999-0259
Disclosure Date: May 23, 1997 (last updated February 22, 2025)
cfingerd lists all users on a system via search.**@target.
0
