Vulnerabilities (CVE)

Filtered by vendor Gnu Subscribe
Filtered by product Fingerd
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-1999-1165 1 Gnu 1 Fingerd 2024-11-20 7.2 HIGH N/A
GNU fingerd 1.37 does not properly drop privileges before accessing user information, which could allow local users to (1) gain root privileges via a malicious program in the .fingerrc file, or (2) read arbitrary files via symbolic links from .plan, .forward, or .project files.
CVE-1999-0612 2 Gnu, Microsoft 4 Finger Service, Fingerd, Windows 2000 and 1 more 2024-11-20 N/A N/A
A version of finger is running that exposes valid user information to any entity on the network.
CVE-1999-0150 1 Gnu 1 Fingerd 2024-11-20 7.5 HIGH N/A
The Perl fingerd program allows arbitrary command execution from remote users.