Title: DECFingerD Format String Vulnerability
Severity: CRITICAL
Description:
The Deception Finger Daemon (decfingerd) is a replacement finger daemon for Unix and Linux variants. decfingerd was designed so that users could provide false information in responses to finger requests.
decfingerd is prone to a format string vulnerability. This may be exploited by remote attackers to potentially execute arbitrary instructions with the privileges of the decfingerd process (normally root).
This problem is the result of unsafe use of the syslog() to log externally supplied data. To exploit this issue, the attacker must submit a maliciously constructed request to the finger daemon which contains format strings. The vulnerability occurs when the request is logged by the syslog function. Attackers may potentially take advantage of this condition to overwrite arbitrary locations in memory with attacker-supplied instructions.
Affected Products:
- decfingerd decfingerd 0.7.0
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
