Home page logo

bugtraq logo Bugtraq mailing list archives

SMStools vulnerabilities in release before 1.4.8
From: "Marcello Magnifico [fabbricadigitale]" <m.magnifico () fabbricadigitale it>
Date: Mon, 11 Mar 2002 09:38:09 +0100

Stefan Frings' SMStools have a couple of string format vulnerabilities affecting many old releases. Impact involves arbitrary command injection and execution with the privileges of the user running 'smsd'. Release 1.4.8 (current) is fixing both vulnerabilities, while 1.4.7 fixes the most trivial one. All SMStools users should upgrade to 1.4.8 as soon as possible.
See http://www.isis.de/members/~s.frings/smstools/ for details and download.

   C U,
   Marcello Magnifico

  By Date           By Thread  

Current thread:
  • SMStools vulnerabilities in release before 1.4.8 Marcello Magnifico [fabbricadigitale] (Mar 12)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]