mcweject -- exploitable buffer overflow

2007-03-27T00:00:00
ID 84D3FBB2-E607-11DB-8A32-000C76189C4C
Type freebsd
Reporter FreeBSD
Modified 2007-03-27T00:00:00

Description

CVE reports:

Buffer overflow in eject.c in Jason W. Bacon mcweject 0.9 on FreeBSD, and possibly other versions, allows local users to execute arbitrary code via a long command line argument, possibly involving the device name.