CVE-2000-0388

Properties

Published:
08.05.1990
Updated:
27.02.2008
Patch available:
Severity:
High
CVSS vector:
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Product:
FreeBSD: FreeBSD
FreeBSD: FreeBSD
FreeBSD: FreeBSD
FreeBSD: FreeBSD
FreeBSD: FreeBSD

Vulnerability description

Buffer overflow in FreeBSD libmytinfo library allows local users to execute commands via a long TERMCAP environmental variable.

References:

Security Focus: http://securityfocus.com/bid/1185
ISS X-Force: http://xforce.iss.net/static/4422.php
Bugtraq: http://www.securityfocus.com/archive/47/59231
FREEBSD: ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00%3A17.libmytinfo.asc
BID: http://www.securityfocus.com/bid/1185