• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

UMN Gopher Client Remote Buffer Overflow Vulnerability

Gopher is prone to a remote buffer overflow vulnerability.

The vulnerability presents itself when the client handles a malformed '+VIEWS:' reply from a server.

A remote attacker may gain unauthorized access in the context of the user running the application.

Gopher version 3.0.9 is reported to be affected by this vulnerability, however, other versions may be vulnerable as well.