Info

Disclosure

Dec 21, 1999

Discovery

Unknown

Dates

Exploit

Dec 21, 1999

Solution

Unknown

Description

A remote overflow may exists in Linuxconf. The issue is due to the handling of HTTP headers resulting in a buffer overflow. When the Web administration mode is enabled, a remote attacker could send an overly long parameter to the USER_AGENT field, which may allow arbitrary code execution reulting in a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Upgrade to version 1.11 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Jacques Gelinas

linuxconf

Unknown or Unspecified

References

Security Tracker: 1009166
CVE ID: 2000-0017 (see also: NVD)
Generic Informational URL: http://lwn.net/1999/1223/a/linuxconfresponse.html
http://www.linuxsa.org.au/mailing-list/1999-11/554.html
Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=94580196627059&w=2
Vendor URL: http://www.solucorp.qc.ca/linuxconf/

Credit

Elias Levy - aleph1securityfocus.com -

Direct URL: http://osvdb.org/36218