Infodrom: >> Cfingerd Security Vulnerabilities
Buffer overflow in cfingerd 1.4.3 and earlier with the ALLOW_LINE_PARSING option enabled allows local users to execute arbitrary code via a long line in the .nofinger file.
CVSS Score
7.2
EPSS Score
0.002
Published
2001-10-18
Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.
CVSS Score
9.8
EPSS Score
0.099
Published
2001-08-02
Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-09-21
Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-08-10
cfingerd lists all users on a system via search.**@target.
CVSS Score
5.0
EPSS Score
0.006
Published
1997-05-23