The bftpdutmp_log function in bftpdutmp.c in Bftpd before 2.4 does not place a '\0' character at the end of the string value of the ut.bu_host structure member, which might allow remote attackers to cause a denial of service (daemon crash) via unspecified vectors. NOTE: some of these details are obtained from third party information.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-09-17T03:44:09.569Z

Reserved: 2010-01-07T00:00:00Z

Link: CVE-2009-4593

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2010-01-07T18:30:01.057

Modified: 2025-04-09T00:30:58.490

Link: CVE-2009-4593

cve-icon Redhat

No data.