CVE-2004-0238
CVE-2004-0238
Multiple buffer overflows in Overkill (0verkill) 0.15pre3 might allow local users to execute arbitrary code in the client via a long HOME environment variable in the (1) load_cfg and (2) save_cfg functions; possibly allow remote attackers to execute arbitrary code via long strings to (3) the send_message function; and, in the server, via (4) the parse_command_line function.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/23634unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.grok.org.uk/pipermail/full-disclosure/2004-February/016579.htmlhttp://marc.info/?l=bugtraq&m=107577335424509&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/14999https://exchange.xforce.ibmcloud.com/vulnerabilities/15000http://www.securiteam.com/securitynews/5AP010KC0C.htmlhttp://www.securityfocus.com/bid/9550