CVE-2005-3863 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2005-3863
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-3863

Description: Stack-based buffer overflow in kkstrtext.h in ktools library 0.3 and earlier, as used in products such as (1) centericq, (2) orpheus, (3) motor, and (4) groan, allows local users or remote attackers to execute arbitrary code via a long parameter to the VGETSTRING macro.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/23233 SAID Secunia Advisory: SA20329 Secunia Advisory: SA20368 Secunia Advisory: SA18081 Secunia Advisory: SA17768 Secunia Advisory: SA20446 Secunia Advisory: SA21684 OSVDB 21161 MISC http://www.zone-h.org/en/advisories/read/id=8480/ GENTOO http://security.gentoo.org/glsa/glsa-200608-27.xml http://security.gentoo.org/glsa/glsa-200512-11.xml DEBIAN http://www.debian.org/security/2006/dsa-1083 http://www.debian.org/security/2006/dsa-1088 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/417906/100/0/threaded BID 15600

Return to the previous page.