CVE-2004-0353

Description

Multiple buffer overflows in auth_ident() function in auth.c for GNU Anubis 3.6.0 through 3.6.2, 3.9.92 and 3.9.93 allow remote attackers to gain privileges via a long string.

Affected products

• gnu / anubis3.6.0 – 3.6.0
• gnu / anubis3.6.1 – 3.6.1
• gnu / anubis3.6.2 – 3.6.2
• gnu / anubis3.9.92 – 3.9.92
• gnu / anubis3.9.93 – 3.9.93

References

• MISChttp://mail.gnu.org/archive/html/bug-anubis/2004-02/msg00000.html
• MAILING_LISThttp://marc.info/?l=bugtraq&m=107894315012081&w=2
• MAILING_LISThttp://marc.info/?l=bugtraq&m=107843915424588&w=2
• MISChttp://www.securityfocus.com/bid/9772
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/15345