 |
Name:
Xtacacsd.BufferOverflow.FreeBsd
|
Released Date:
Feb 19 2008
|
Severity:
high
|
|
|
|
|
|
|
|
|
|
|
FortiGuard Center
> Vulnerability Encyclopedia
In-Depth Analysis
|
Description
|
This indicates an attempt to exploit a buffer overflow vulnerability in Xtacacsd running under freebsd.
The vulnerability is caused by a input parameter check error in the report function. It allows a remote attacker to execute arbitray code on a victim system by sending an excessively long username parameter.
|
|
|
|
Impact
|
|
System compromise: remote code execution.
|
|
|
|
Affected Products
|
|
XTACACSD version 4.1.2 and prior.
|
|
Aliases
|
FreeBSD.Xtacacsd.Username.Buffer.Overflow
Xtacacsd.BufferOverflow.FreeBsd
|
|
References
|
N/A
|
|
Recommended Actions
|
|
Currently we are not aware of any vendor supplied patch for this issue.
|
|
