Multiple Vendor mopd Buffer Overflow Vulnerability

A buffer overflow exists in the mopd daemon, shipped with a number of popular operating systems. By supplying a long file name from a client, containing machine executable code, it is possible to execute arbitrary commands on the machine running mopd.

To check for a vulnerable version, it is possible to look in the mopProcessDL() function, in process.c. If the pfile[] buffer is declared to be 17 bytes, it is vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus