Back to search
CVE-2008-0217
Published: Jan 16, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
The script program in FreeBSD 5.0 through 7.0-PRERELEASE invokes openpty, which creates a pseudo-terminal with world-readable and world-writable permissions when it is not run as root, which allows local users to read data from the terminal of the user running script.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
28498
third-party-advisory
x_refsource_SECUNIA
1019191
vdb-entry
x_refsource_SECTRACK
freebsd-openpty-information-disclosure(39665)
vdb-entry
x_refsource_XF
27284
vdb-entry
x_refsource_BID
FreeBSD-SA-08:01
vendor-advisory
x_refsource_FREEBSD
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now