Kerberos 5 su (k5su) in FreeBSD 4.4 and previous versions relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freebsd heimdal 0.4e |
||
kth heimdal 0.4e |
||
freebsd freebsd 4.0 |
||
freebsd freebsd 4.1 |
||
freebsd freebsd 4.1.1 |
||
freebsd freebsd 4.2 |
||
freebsd freebsd 4.3 |
||
freebsd freebsd 4.4 |