exploitDog

CVE-2009-0641

Опубликовано: 20 фев. 2009

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

sys_term.c in telnetd in FreeBSD 7.0-RELEASE and other 7.x versions deletes dangerous environment variables with a method that was valid only in older FreeBSD distributions, which might allow remote attackers to execute arbitrary code by passing a crafted environment variable from a telnet client, as demonstrated by an LD_PRELOAD value that references a malicious library.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:freebsd:freebsd:7.0:*:*:*:*:*:*:*

cpe:2.3:o:freebsd:freebsd:7.0:beta_4:*:*:*:*:*:*

cpe:2.3:o:freebsd:freebsd:7.0:current:*:*:*:*:*:*

cpe:2.3:o:freebsd:freebsd:7.0-release:*:*:*:*:*:*:*

cpe:2.3:o:freebsd:freebsd:7.0_beta4:*:*:*:*:*:*:*

cpe:2.3:o:freebsd:freebsd:7.0_releng:*:*:*:*:*:*:*

cpe:2.3:o:freebsd:freebsd:7.1:*:*:*:*:*:*:*

cpe:2.3:o:freebsd:freebsd:7.1:rc1:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.08639

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-16

Связанные уязвимости

GHSA-5vvp-mjcx-6cg5

github

почти 4 года назад

sys_term.c in telnetd in FreeBSD 7.0-RELEASE and other 7.x versions deletes dangerous environment variables with a method that was valid only in older FreeBSD distributions, which might allow remote attackers to execute arbitrary code by passing a crafted environment variable from a telnet client, as demonstrated by an LD_PRELOAD value that references a malicious library.

EPSS

Процентиль: 92%

0.08639

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-16