28 matches found
[SECURITY] Fedora 21 Update: mksh-50c-1.fc21
mksh is the MirBSD enhanced version of the Public Domain Korn shell pdksh, a bourne-compatible shell which is largely similar to the original AT&T Korn shell. It includes bug fixes and feature improvements in order to produce a modern, robust shell good for interactive and especially script use,...
[SECURITY] Fedora 19 Update: mksh-50c-1.fc19
mksh is the MirBSD enhanced version of the Public Domain Korn shell pdksh, a bourne-compatible shell which is largely similar to the original AT&T Korn shell. It includes bug fixes and feature improvements in order to produce a modern, robust shell good for interactive and especially script use,...
FreeBSD Ports: mksh
The remote host is missing an update to the system as announced in the referenced advisory. VID 86c05550-12c1-11dd-bab7-0016179b2dd5 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: mksh
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD : mksh -- TTY attachment privilege escalation (86c05550-12c1-11dd-bab7-0016179b2dd5)
Secunia reports : The vulnerability is caused due to an error when attaching to a TTY via the -T command line switch. This can be exploited to execute arbitrary commands with the privileges of the user running mksh via characters previously written to the attached virtual console. %NASLMINLEVEL...
Design/Logic Flaw
The Korn shell aka mksh before R33d on MirOS aka MirBSD does not flush the tty's I/O when invoking mksh in a new terminal, which allows local users to gain privileges by opening a virtual terminal and entering command sequences, which might later be executed in opportunistic circumstances by a...
CVE-2008-1845
The vulnerability CVE-2008-1845 affects mksh (Korn shell) on MirOS/MirBSD prior to R33d. The issue is that mksh does not flush the tty I/O when invoked in a new terminal, allowing a local user to gain privileges by opening a virtual terminal and later having command sequences executed when anothe...
MirOS BSD Korn Shell本地权限提升漏洞
BUGTRAQ ID: 28768 MirOS BSD是运行在32位i386和sparc平台上的BSD家族操作系统。 MirBSD的Korn Shell(mksh)在通过-T命令行开关附加到TTY时存在错误,本地攻击者可以利用之前写入到所附加虚拟控制台的字符以运行mksh用户的权限执行任意命令。 MirOS Project MirBSD Korn Shell R33d MirOS Project ------------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.mirbsd.org...