April 19, 2001

Debian advisory: cfingerd

Author: JT Smith

From LinuxSecurity.com: "The cfingerd Debian as distributed with Debian GNU/Linux 2.2 was not careful in its logging code. By combining this with an off-by-one error in the code that copied the username from an ident response cfingerd could exploited by a remote user."


  • Linux
Click Here!