|
|
CVE Reference: CVE-2004-1702 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2004-1702 |
|
|
Description: The AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 does not properly check the return value of the ReceiveTransaction function, which leads to a failed malloc call and triggers to a null dereference, which allows remote attackers to cause a denial of service (crash). |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/16937 SAID Secunia Advisory: SA12251 MISC http://www.coresecurity.com/common/showdoc.php?idx=387&idxseccion=10 GENTOO http://security.gentoo.org/glsa/glsa-200408-08.xml BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=109208394910086&w=2 BID 10900 |
|
| Return to the previous page. |
