Secunia Logo  


Secunia PSI WorldMap
 
CVE Reference: CVE-2008-0777
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2008-0777

Description:
The sendfile system call in FreeBSD 5.5 through 7.0 does not check the access flags of the file descriptor used for sending a file, which allows local users to read the contents of write-only files.

CVE Status:
Candidate

References:

ST
  1019416

SAID
  Secunia Advisory: SA28928

FREEBSD
  http://security.freebsd.org/advisories/FreeBSD-SA-08:03.sendfile.asc

BID
  27789


Return to the previous page.