First published: Tue Mar 18 2003(Updated: )
Buffer overflow in (1) mrinfo, (2) mtrace, and (3) pppd in NetBSD 1.4.x through 1.6 allows local users to gain privileges by executing the programs after filling the file descriptor tables, which produces file descriptors larger than FD_SETSIZE, which are not checked by FD_SET().
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
NetBSD NetBSD | =1.5.3 | |
NetBSD NetBSD | =1.4 | |
NetBSD NetBSD | =1.5 | |
NetBSD NetBSD | =1.4.2 | |
NetBSD NetBSD | =1.4.2 | |
NetBSD NetBSD | =1.4.2 | |
NetBSD NetBSD | =1.4.1 | |
NetBSD NetBSD | =1.4.2 | |
NetBSD NetBSD | =1.5 | |
NetBSD NetBSD | =1.4.2 | |
NetBSD NetBSD | =1.4.1 | |
NetBSD NetBSD | =1.5.1 | |
NetBSD NetBSD | =1.5 | |
NetBSD NetBSD | =1.5.2 | |
NetBSD NetBSD | =1.4.3 | |
NetBSD NetBSD | =1.4 | |
NetBSD NetBSD | =1.4 | |
NetBSD NetBSD | =1.4.1 | |
NetBSD NetBSD | =1.4.1 | |
NetBSD NetBSD | =1.4.1 | |
NetBSD NetBSD | =1.4 | |
NetBSD NetBSD | =1.4.1 | |
NetBSD NetBSD | =1.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.