Intrusion Prevention

Anubis.IDENT.Buffer.Overflow

Description

It indicates a buffer overflow vulnerability in GNU Anubis.



Anubis is a mail processor for Linux-based operating systems. Due to inadequate boundary checking in the IDENT protocol support, a remote attacker can execute arbitrary code on a target system by passing it specially-crafted packets.

Affected Products

Any unprotected GNU Anubis 3.62, 3.9.92 or 3.9.93 is vulnerable to the attack.

Impact

Attackers can execute arbitrary commands on the victim system.

Recommended Actions

Apply appropriate patches and/or upgrade the program to the latest non-vulnerable version.

CVE References

CVE-2004-0353

Other References

1