← back
CVE-2003-0849

CVE-2003-0849

EPSS 10.6%
Buffer overflow in net.c for cfengine 2.x before 2.0.8 allows remote attackers to execute arbitrary code via certain packets with modified length values, which is trusted by the ReceiveTransaction function when using a buffer provided by the BusyWithConnection function.
Affected products
n/a · n/a
public PoCs found3
exploitdbwww.exploit-db.com/exploits/105unverifiedexploitdbwww.exploit-db.com/exploits/23182unverifiedexploitdbwww.exploit-db.com/exploits/23183unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=106451047819552&w=2http://marc.info/?l=bugtraq&m=106485375218280&w=2http://marc.info/?l=bugtraq&m=106546086216984&w=2