CVE-2001-0220

CVE-2001-0220 describes a buffer overflow in the ja-elvis and ko-helvis ports of the Elvis program that allows local users to gain root privileges. The NVD entry lists a CVSSv2 base score of 7.2 ( HIGH ) with LOCAL attack vector, LOW complexity, no authentication required, and complete impact on ...

FreeBSD 3.5.1/4.2 - Ports Package 'elvrec' Local Privilege Escalation

/ ja-elvis & ko-helvis - FreeBSD 3.5.1 & 4.2 ports package local root exploit vulnerable: versions prior to ja-elvis-1.8.41 and ko-helvis-1.8h21 The above two packages contain a file recovery utility 'elvrec', installed suid root4755 by default. The utility is subject to a buffer overflow leading...

Ports Security Advisory: FreeBSD-SA-01:21.ja-elvis

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:21 Security Advisory FreeBSD, Inc. Topic: ja-elvis and ko-helvis ports contain a local root compromise Category: ports Module: ja-elvis/ko-helvis Announced: 2001-02-07...

FreeBSD-SA-01:21.ja-elvis

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:21 Security Advisory FreeBSD, Inc. Topic: ja-elvis and ko-helvis ports contain a local root compromise Category: ports Module: ja-elvis/ko-helvis Announced: 2001-02-07...