|
|
CVE Reference: CVE-2008-0217 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-0217 |
|
|
Description: The script program in FreeBSD 5.0 through 7.0-PRERELEASE invokes openpty, which creates a pseudo-terminal with world-readable and world-writable permissions when it is not run as root, which allows local users to read data from the terminal of the user running script. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/39665 ST 1019191 SAID Secunia Advisory: SA28498 FREEBSD http://security.FreeBSD.org/advisories/FreeBSD-SA-08:01.pty.asc BID 27284 |
|
| Return to the previous page. |
