VULHUB ™

A buffer overflow exists in the mopd daemon, shipped with a number of popular operating systems. By supplying a long file name from a client, containing machine executable code, it is possible to execute arbitrary commands on the machine running mopd. To check for a vulnerable version, it is possible to look in the mopProcessDL() function, in process.c. If the pfile[] buffer is declared to be 17 bytes, it is vulnerable.

A buffer overflow exists in the mopd daemon, shipped with a number of popular operating systems. By supplying a long file name from a client, containing machine executable code, it is possible to execute arbitrary commands on the machine running mopd. To check for a vulnerable version, it is possible to look in the mopProcessDL() function, in process.c. If the pfile[] buffer is declared to be 17 bytes, it is vulnerable.