efFingerD sockFinger_DataArrival buffer overflow
| effingerd-sockfingerdataarrival-bo (16097) |  Low Risk |
Description:
efFingerD is vulnerable to a denial of service attack, caused by a buffer overflow in the sockFinger_DataArrival function. By sending a long string containing 180 characters to the finger command, a remote attacker could cause the daemon to crash.
Consequences:
Denial of Service
Remedy:
No remedy available as of July 9, 2011.
References:
- efFingerD Index Web page: Index of /r34ct/main/fixes/effingerd/binary.
- BID-10304: EFFingerD Remote Buffer Overflow Vulnerability
- CVE-2004-2272: Buffer overflow in the sockFinger_DataArrival function in efFingerD 0.2.12 allows remote attackers to cause a denial of service (daemon crash) via a long finger command.
- CVE-2004-2273: efFingerD 0.2.12 allows remote attackers to cause a denial of service (daemon crash) via a packet with a single byte, which triggers a Wrong protocol or connection state error.
- OSVDB ID: 5991: efFingerD sockFinger_DataArrival DoS
- OSVDB ID: 5992: efFingerD Malformed Packet DoS
- SA11573: efFingerD Denial of Service Vulnerabilities
- SECTRACK ID: 1010094: efFingerD Buffer Overflow in sockFinger_DataArrival() Lets Remote Users Crash the Daemon
Platforms Affected:
- efFingerD efFingerD 0.2.12
Reported:
May 07, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net