Vulnerabilities

CVE-2009-4593

by Fred · 07/01/2010

The bftpdutmp_log function in bftpdutmp.c in Bftpd before 2.4 does not place a ‘’ character at the end of the string value of the ut.bu_host structure member, which might allow remote attackers to cause a denial of service (daemon crash) via unspecified vectors. NOTE: some of these details are obtained from third party information.

Date published : 2010-01-07

http://www.securityfocus.com/bid/36820

http://bftpd.sourceforge.net/downloads/CHANGELOG

Similar

Tags: Cybersecurity Alert