3 matches found
CVE-2002-0424
efingerd 1.61 and earlier, when configured without the -u option, executes .efingerd files as the efingerd user typically "nobody", which allows local users to gain privileges as the efingerd user by modifying their own .efingerd file and running finger...
CVE-2002-0424
CVE-2002-0424 affects efingerd 1.61 and earlier. When configured without the -u option, efingerd executes user-owned .efingerd files as the efingerd user (typically "nobody"), allowing a local user to gain privileges by modifying their own .efingerd file and invoking finger. The connected documen...
CVE-2002-0424
efingerd 1.61 and earlier, when configured without the -u option, executes .efingerd files as the efingerd user typically "nobody", which allows local users to gain privileges as the efingerd user by modifying their own .efingerd file and running finger...