Lucene search
FreeBSDAD4F6CA4-6720-11D8-9FB5-000A95BC6FAEHistoryFeb 21, 2004 - 12:00 a.m.
lbreakout2 vulnerability in environment variable handling
2004-02-2100:00:00
vuxml.freebsd.org
6
0.0004 Low
EPSS
Percentile
0.4%
Ulf Härnhammar discovered an exploitable vulnerability in
lbreakout2’s environmental variable handling. In several
instances, the contents of the HOME environmental variable
are copied to a stack or global buffer without range
checking. A local attacker may use this vulnerability to
acquire group-ID `games’ privileges.
An exploit for this vulnerability has been published by
``Li0n7 voila fr’'.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | lbreakout2 | <= 2.2.2_1 | UNKNOWN |
Related
nessus
nessus
FreeBSD : lbreakout2 vulnerability in environment variable handling (ad4f6ca4-6720-11d8-9fb5-000a95bc6fae)
2009-04-23 00:00:00
Debian DSA-445-1 : lbreakout2 - buffer overflow
2004-09-29 00:00:00
FreeBSD : lbreakout2 vulnerability in environment variable handling (87)
2004-07-06 00:00:00
openvas
openvas
FreeBSD Ports: lbreakout2
2008-09-04 00:00:00
Debian Security Advisory DSA 445-1 (lbreakout2)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-445)
2008-01-17 00:00:00
securityvulns
securityvulns
debian
debian
[SECURITY] [DSA 445-1] New lbreakout2 packages fix buffer overflow
2004-02-21 00:00:00
cve
cve
CVE-2004-0158
2004-03-29 05:00:00
debiancve
debiancve
CVE-2004-0158
2004-03-29 05:00:00
osv
osv
lbreakout2 - buffer overflow
2004-02-21 00:00:00
cvelist
cvelist
CVE-2004-0158
2004-03-10 05:00:00