Ubuntu.comUB:CVE-2006-1283CVE-2006-1283
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
24.8%
opiepasswd in One-Time Passwords in Everything (OPIE) in FreeBSD
4.10-RELEASE-p22 through 6.1-STABLE before 20060322 uses the getlogin
function to determine the invoking user account, which might allow local
users to configure OPIE access to the root account and possibly gain root
privileges if a root shell is permitted by the configuration of the wheel
group or sshd.
Related
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
24.8%