CVE-2008-7232 Information

Description

Buffer overflow in the report function in xtacacsd 4.1.2 and earlier allows remote attackers to execute arbitrary code via a crafted CONNECT TACACS command.

Reference

http://aluigi.altervista.org/adv/xtacacsdz-adv.txt http://aluigi.org/poc/xtacacsdz.zip https://exchange.xforce.ibmcloud.com/vulnerabilities/39551