Citadel/UX USER Command Remote Overflow
Critical Nessus Plugin ID 13856
SynopsisThe remote messaging service has a buffer overflow vulnerability.
DescriptionThe remote host is running Citadel/UX, a messaging server for Unix.
There is a buffer overflow in the remote version of this software that could be exploited by a remote attacker to create a denial of service, or execute arbitrary code.
To exploit this flaw, an attacker would need to provide a specially crafted argument to the USER command.
SolutionUpgrade to Citadel 6.24 or later.