exploitDog

CVE-2002-0557

Опубликовано: 03 июл. 2002

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Vulnerability in OpenBSD 3.0, when using YP with netgroups in the password database, causes (1) rexec or (2) rsh to run another user's shell, or (3) atrun to change to a different user's directory, possibly due to memory allocation failures or an incorrect call to auth_approval().

Ссылки

http://www.iss.net/security_center/static/8625.php
Patch
Vendor Advisory
http://www.openbsd.org/errata30.html#approval
http://www.securityfocus.com/bid/4338
Patch
Vendor Advisory
http://www.iss.net/security_center/static/8625.php
Patch
Vendor Advisory
http://www.openbsd.org/errata30.html#approval
http://www.securityfocus.com/bid/4338
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:openbsd:openbsd:3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 66%

0.00527

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-2v78-p655-v2m3

github

больше 3 лет назад

Vulnerability in OpenBSD 3.0, when using YP with netgroups in the password database, causes (1) rexec or (2) rsh to run another user's shell, or (3) atrun to change to a different user's directory, possibly due to memory allocation failures or an incorrect call to auth_approval().

EPSS

Процентиль: 66%

0.00527

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other