Computer Security
[EN] securityvulns.ru no-pyccku


nss-pam-ldapd fd_set overflow
Published:24.02.2013
Source:
SecurityVulns ID:12909
Type:remote
Threat Level:
5/10
Description:FD_SET() structure overflow
Affected:NSSPAMLDAPD : nss-pam-ldapd 0.8
CVE:CVE-2013-0288 (nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code by performing a name lookup on an application with a large number of open file descriptors, which triggers a stack-based buffer overflow related to incorrect use of the FD_SET macro.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2628-1] nss-pam-ldapd security update (24.02.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod