CVE-2005-1099

Greylisting daemon <1.4 - Buffer Overflow

Title source: llm

Description

Multiple buffer overflows in the HandleChild function in server.c in Greylisting daemon (GLD) 1.3 and 1.4, when GLD is listening on a network interface, allow remote attackers to execute arbitrary code.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotelinux

https://www.exploit-db.com/exploits/16841

View Code ZIP pw:eip

metasploit WORKING POC GOOD

by aushack · rubypoclinux

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/misc/gld_postfix.rb

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Xpl017Elz · cremotelinux

https://www.exploit-db.com/exploits/25392

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by patrick · rubyremotelinux

https://www.exploit-db.com/exploits/10023

View Code ZIP pw:eip

References (8)

[Mailing List] http://marc.info/?l=bugtraq&m=111339935903880&w=2

[Mailing List] http://marc.info/?l=bugtraq&m=111342432325670&w=2

[Patch, Vendor Advisory] http://secunia.com/advisories/14941

[Patch, Vendor Advisory] http://security.gentoo.org/glsa/glsa-200504-10.xml

[Vendor Advisory] http://securitytracker.com/alerts/2005/Apr/1013678.html

[Vendor Advisory] http://www.gasmi.net/down/gld-history

[Patch, Vendor Advisory] http://www.osvdb.org/15492

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/20066

Scores

EPSS 0.7903

EPSS Percentile 99.0%

Classification

Status draft

Affected Products (6)

salim_gasmi/gld

Timeline

Published Apr 12, 2005

Tracked Since Feb 18, 2026