VULHUB ™

cfingerd is a secure implementation of the finger daemon. cfingerd has been contributed to by many authors, and is maintained by the cfingerd development team. A format string vulnerability has been discovered in cfingerd. Due to insufficient validation of input, it's possible to pass arbitrary format strings through the program, allowing an attacker to write to arbitrary sections of memory. This makes it possible for a local user to gain elevated privileges. Successful exploitation of this vulnerability results in root access.

cfingerd is a secure implementation of the finger daemon. cfingerd has been contributed to by many authors, and is maintained by the cfingerd development team. A format string vulnerability has been discovered in cfingerd. Due to insufficient validation of input, it's possible to pass arbitrary format strings through the program, allowing an attacker to write to arbitrary sections of memory. This makes it possible for a local user to gain elevated privileges. Successful exploitation of this vulnerability results in root access.