First published: Mon Aug 12 2002(Updated: )
Kerberos 5 su (k5su) in FreeBSD 4.4 and earlier relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Freebsd Heimdal | =0.4e | |
Kth Heimdal | =0.4e | |
FreeBSD FreeBSD | =4.0 | |
FreeBSD FreeBSD | =4.1 | |
FreeBSD FreeBSD | =4.1.1 | |
FreeBSD FreeBSD | =4.1.1-release | |
FreeBSD FreeBSD | =4.1.1-stable | |
FreeBSD FreeBSD | =4.2 | |
FreeBSD FreeBSD | =4.2-stable | |
FreeBSD FreeBSD | =4.3 | |
FreeBSD FreeBSD | =4.3-release | |
FreeBSD FreeBSD | =4.3-stable | |
FreeBSD FreeBSD | =4.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.