EDB-20748
remotelinuxVERIFIED
cfingerd 1.4 - Format String (1)
CVE-2001-0609
Lez4/11/2001
CVE-2001-0609
9.8CRITICALFormat string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.
Published: 8/2/2001Updated: 4/3/2025
Description
Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.
AI AnalysisPowered by AI
Affected Products
infodromcfingerd
Available Exploits (2)
References
- http://archives.neohapsis.com/archives/bugtraq/2001-04/0202.htmlBroken LinkExploitPatchVendor Advisory
- http://www.securityfocus.com/bid/2576Broken LinkExploitPatchThird Party AdvisoryVDB EntryVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6364Third Party AdvisoryVDB Entry
- http://archives.neohapsis.com/archives/bugtraq/2001-04/0202.htmlBroken LinkExploitPatchVendor Advisory
- http://www.securityfocus.com/bid/2576Broken LinkExploitPatchThird Party AdvisoryVDB EntryVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6364Third Party AdvisoryVDB Entry