Intrusion Prevention

Fake.Identd.Query.Buffer.Overflow

Description

Fake Identd has a stack-based buffer overflow vulnerability. A remote attacker could execute arbitrary code on the system, with the privileges of the root user, via a very long request split across multiple TCP packets.

Affected Products

Fake version 1.5 and prior

Impact

Gain Access

Recommended Actions

Apply patch :
http://iki.fi/too/sw/releases/identd.c

CVE References

CVE-2002-1792