Citadel/UX select() Bitmap Array Index Remote Oerflow
Critical Nessus Plugin ID 16245
SynopsisThe remote messaging service has a buffer overflow vulnerability.
DescriptionThe remote host is running Citadel/UX, a messaging server for Unix.
The remote version of this software is vulnerable to a buffer overflow when performing a select() system call while providing very high file descriptors. A remote attacker may exploit this flaw to modify at least one byte in memory. This could lead to a denial of service, or possibly arbitrary code execution.
SolutionUpgrade to Citadel 6.29 or later.