Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1385

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-1999-1385
Last Modified 10 Sep 2008 03:01:50
Published 19 Dec 1996 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-1385

Summary

Buffer overflow in ppp program in FreeBSD 2.1 and earlier allows local users to gain privileges via a long HOME environment variable.

Vulnerable Systems

Operating System

  • Freebsd 1.0

  • Freebsd 1.1

  • Freebsd 2.1.0

  • Freebsd 2.1.5

  • Freebsd 2.1.6

  • Freebsd 2.1.6.1


References

FREEBSD - FreeBSD-SA-96:20

OSVDB - 6085

XF - ppp-bo(7465)

BUGTRAQ - 19961219 Exploit for ppp bug (FreeBSD 2.1.0).


Last Updated: 27 May 2016 10:35:24