Vulnerabilities > CVE-2004-1282 - Unspecified vulnerability in Linpopup 1.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Buffer overflow in the strexpand function in string.c for LinPopUp 1.2.0 allows remote attackers to execute arbitrary code via a crafted message that is not properly handled during a Reply operation.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | LinPopUp 1.2 Remote Buffer Overflow Vulnerability. CVE-2004-1282. Remote exploit for linux platform |
id | EDB-ID:25008 |
last seen | 2016-02-03 |
modified | 2004-12-15 |
published | 2004-12-15 |
reporter | Stephen Dranger |
source | https://www.exploit-db.com/download/25008/ |
title | LinPopUp 1.2 - Remote Buffer Overflow Vulnerability |
Nessus
NASL family Debian Local Security Checks NASL id DEBIAN_DSA-632.NASL description Stephen Dranger discovered a buffer overflow in linpopup, an X11 port of winpopup, running over Samba, that could lead to the execution of arbitrary code when displaying a maliciously crafted message. last seen 2020-06-01 modified 2020-06-02 plugin id 16129 published 2005-01-12 reporter This script is Copyright (C) 2005-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/16129 title Debian DSA-632-1 : linpopup - buffer overflow NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-200501-01.NASL description The remote host is affected by the vulnerability described in GLSA-200501-01 (LinPopUp: Buffer overflow in message reply) Stephen Dranger discovered that LinPopUp contains a buffer overflow in string.c, triggered when replying to a remote user message. Impact : A remote attacker could craft a malicious message that, when replied using LinPopUp, would exploit the buffer overflow. This would result in the execution of arbitrary code with the privileges of the user running LinPopUp. Workaround : There is no known workaround at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 16392 published 2005-02-14 reporter This script is Copyright (C) 2005-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/16392 title GLSA-200501-01 : LinPopUp: Buffer overflow in message reply