Back to search
CVE-2008-1845
Published: Apr 16, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
The Korn shell (aka mksh) before R33d on MirOS (aka MirBSD) does not flush the tty's I/O when invoking mksh in a new terminal, which allows local users to gain privileges by opening a virtual terminal and entering command sequences, which might later be executed in opportunistic circumstances by a different user who launches mksh and specifies that terminal with the -T option.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
44365
vdb-entry
x_refsource_OSVDB
28768
vdb-entry
x_refsource_BID
29803
third-party-advisory
x_refsource_SECUNIA
mirbsd-tty-privilege-escalation(41794)
vdb-entry
x_refsource_XF
http://www.mirbsd.org/mksh.htm#clog
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now