Back to search
CVE-2008-0216
Published: Jan 16, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
The ptsname function in FreeBSD 6.0 through 7.0-PRERELEASE does not properly verify that a certain portion of a device name is associated with a pty of a user who is calling the pt_chown function, which might allow local users to read data from the pty from another user.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
28498
third-party-advisory
x_refsource_SECUNIA
1019191
vdb-entry
x_refsource_SECTRACK
freebsd-ptsname-information-disclosure(39667)
vdb-entry
x_refsource_XF
27284
vdb-entry
x_refsource_BID
FreeBSD-SA-08:01
vendor-advisory
x_refsource_FREEBSD
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now