Lucene search

FreeBSD1613DB79-8E52-11DA-8426-000FEA0A9611

HistoryOct 28, 2003 - 12:00 a.m.

kpopup -- local root exploit and local denial of service

2003-10-2800:00:00

vuxml.freebsd.org

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.001

Percentile

21.0%

JSON

Mitre CVE reports:

Format string vulnerability in main.cpp in kpopup
0.9.1-0.9.5pre2 allows local users to cause a denial of
service (segmentation fault) and possibly execute
arbitrary code via format string specifiers in command
line arguments.

misc.cpp in KPopup 0.9.1 trusts the PATH variable when
executing killall, which allows local users to elevate
their privileges by modifying the PATH variable to
reference a malicious killall program.

SecurityFocus credits “b0f” [email protected]

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchkpopup= 0.9.1UNKNOWN
FreeBSDanynoarchkpopup<= 0.9.5UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	kpopup	= 0.9.1	UNKNOWN
FreeBSD	any	noarch	kpopup	<= 0.9.5	UNKNOWN

References

www.henschelsoft.de/kpopup_en.html

www.securityfocus.com/archive/1/342736

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.001

Percentile

21.0%

JSON

Related for 1613DB79-8E52-11DA-8426-000FEA0A9611