FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Open DC Hub -- remote buffer overflow vulnerability

Affected packages
opendchub < 0.7.14_2

Details

VuXML ID cdf14b68-3ff9-11d9-8405-00065be4b5b6
Discovery 2004-11-24
Entry 2004-11-27
Modified 2005-02-13

Donato Ferrante reported an exploitable buffer overflow in this software package. Any user that can login with 'admin' privileges can abuse it, trough the $RedirectAll command, to execute arbitrary code.

References

Message 20041124155429.893852455E@chernobyl.investici.org
URL http://www.gentoo.org/security/en/glsa/glsa-200411-37.xml