Back to search
CVE-2007-5256
Published: Oct 6, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple stack-based buffer overflows in FSD 2.052 d9 and earlier, and FSFDT FSD 3.000 d9 and earlier, allow (1) remote attackers to execute arbitrary code via a long HELP command on TCP port 3010 to the sysuser::exechelp function in sysuser.cc and (2) remote authenticated users to execute arbitrary code via long commands on TCP port 6809 to the servinterface::sendmulticast function in servinterface.cc, as demonstrated by a PIcallsign command.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20071001 Two buffer-overflow in FSD V2.052 d9 and FSFDT V3.000 d9
mailing-list
x_refsource_BUGTRAQ
4484
exploit
x_refsource_EXPLOIT-DB
http://aluigi.altervista.org/adv/fsdbof-adv.txt
x_refsource_MISC
27045
third-party-advisory
x_refsource_SECUNIA
3195
third-party-advisory
x_refsource_SREASON
25883
vdb-entry
x_refsource_BID
ADV-2007-3334
vdb-entry
x_refsource_VUPEN
20071004 Re: Two buffer-overflow in FSD V2.052 d9 and FSFDT V3.000 d9[EXPLOIT]
mailing-list
x_refsource_BUGTRAQ
27008
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now