CVE-2005-1109

Name of the Vulnerable Software and Affected Versions JunkBuster versions prior to 2.0.2-r3

Description The issue concerns multiple vulnerabilities in the JunkBuster package of the Debian GNU/Linux operating system. These vulnerabilities can be exploited remotely, potentially leading to breaches in confidentiality, integrity, and availability of protected information. Specifically, the filtering of URLs in affected versions allows remote attackers to cause a denial of service, potentially leading to application crashes, and possibly execute arbitrary code via heap corruption.

Recommendations For JunkBuster versions prior to 2.0.2-r3, update to version 2.0.2-r3 or later to resolve the issue. As a temporary workaround, consider restricting access to the URL filtering functionality until a patch is applied.