A locally exploitable buffer overflow exists in mclear.
Based on a public report, it appears there is a locally exploitable buffer overflow in the mclear command that is included with CA-MLINK.
A local attacker can execute arbitrary code on the vulnerable host.
The CERT/CC is currently unaware of a practical solution to this problem.
The CERT/CC credits KF <firstname.lastname@example.org> http://www.snosoft.com for discovering this vulnerability and working with us to further understand it.
|Date First Published:||2002-05-16|
|Date Last Updated:||2002-05-16 18:02 UTC|