CVE-2004-1916

Name of the Vulnerable Software and Affected Versions LCDProc versions 0.4.1 through 0.4.4

Description The issue is related to multiple buffer overflows that allow remote attackers to execute arbitrary code. This can be achieved by sending a long invalid command to the parse all client messages function or a long argv command to the test func func function.

Recommendations For versions 0.4.1 through 0.4.4, as a temporary workaround, consider disabling the parse all client messages and test func func functions until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.