FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-19 19:12:13 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
8675efd5-e22c-11e1-a808-002354ed89bc	sudosh -- buffer overflow ISS reports: sudosh2 and sudosh3 are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the replay() function. By persuading a victim to replay a specially-crafted recorded sudo session, a local attacker could overflow a buffer and execute arbitrary code on the system with elevated privileges or cause the application to crash. Discovery 2010-01-17 Entry 2012-08-09 sudosh2 <= 1.0.2 sudosh3 <= 3.2.0_2 http://xforce.iss.net/xforce/xfdb/55903 http://secunia.com/advisories/38349 http://secunia.com/advisories/38292

VuXML ID

Description

8675efd5-e22c-11e1-a808-002354ed89bc

sudosh -- buffer overflow

ISS reports:

sudosh2 and sudosh3 are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the replay() function. By persuading a victim to replay a specially-crafted recorded sudo session, a local attacker could overflow a buffer and execute arbitrary code on the system with elevated privileges or cause the application to crash.

Discovery 2010-01-17
Entry 2012-08-09
sudosh2

<= 1.0.2

sudosh3

<= 3.2.0_2

http://xforce.iss.net/xforce/xfdb/55903
http://secunia.com/advisories/38349
http://secunia.com/advisories/38292