FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
6c2d4f29-af3e-11d9-837d-000e0c2e438agld -- format string and buffer overflow vulnerabilities

Gld has been found vulnerable to multiple buffer overflows as well as multiple format string vulnerabilities.

An attacker could exploit this vulnerability to execute arbitrary code with the permissions of the user running Gld, the default user being root.

The FreeBSD port defaults to running gld as the root user. The risk of exploitation can be minimized by making gld listen on the loopback address only, or configure it to only accept connections from trusted smtp servers.


Discovery 2005-04-12
Entry 2005-04-19
gld
< 1.5

13129
13133
CVE-2005-1099
CVE-2005-1100
http://marc.theaimsgroup.com/?l=bugtraq&m=111339935903880
http://marc.theaimsgroup.com/?l=bugtraq&m=111342432325670