misc/111365: CVE-2007-1719 - mcweject buffer overflow
Jeff Forsythe
tornandfilthy2006 at yahoo.com
Sun Apr 8 01:20:02 UTC 2007
>Number: 111365
>Category: misc
>Synopsis: CVE-2007-1719 - mcweject buffer overflow
>Confidential: no
>Severity: serious
>Priority: low
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Sun Apr 08 01:20:01 GMT 2007
>Closed-Date:
>Last-Modified:
>Originator: Jeff Forsythe
>Release: 6.2
>Organization:
>Environment:
>Description:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-1719
Buffer overflow in eject.c in Jason W. Bacon mcweject 0.9 on FreeBSD, and possibly other versions, allows local users to execute arbitrary code via a long command line argument, possibly involving the device name.
----
Didn't see any bug reports or responses from FreeBSD, thought I'd check if this was known, and if a fix is in place.
>How-To-Repeat:
Exploit: http://milw0rm.com/exploits/3578
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-bugs
mailing list