cfingerd
by Cfingerd
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-0735 | 0.03 | — | 0.02 | Oct 18, 2001 | Buffer overflow in cfingerd 1.4.3 and earlier with the ALLOW_LINE_PARSING option enabled allows local users to execute arbitrary code via a long line in the .nofinger file. | |||
| CVE-1999-0813 | 0.00 | — | 0.00 | Aug 10, 1999 | Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges. | |||
| CVE-1999-0259 | 0.00 | — | 0.01 | May 23, 1997 | cfingerd lists all users on a system via search.**@target. |
- CVE-2001-0735Oct 18, 2001risk 0.03cvss —epss 0.02
Buffer overflow in cfingerd 1.4.3 and earlier with the ALLOW_LINE_PARSING option enabled allows local users to execute arbitrary code via a long line in the .nofinger file.
- CVE-1999-0813Aug 10, 1999risk 0.00cvss —epss 0.00
Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.
- CVE-1999-0259May 23, 1997risk 0.00cvss —epss 0.01
cfingerd lists all users on a system via search.**@target.