CVE-2006-0098

N/A

Descripcion

The dupfdopen function in sys/kern/kern_descrip.c in OpenBSD 3.7 and 3.8 allows local users to re-open arbitrary files by using setuid programs to access file descriptors using /dev/fd/.

Detalles CVE

Puntuacion CVSS v3.1N/A

Publicado1/6/2006

Ultima modificacion4/16/2026

Fuentenvd

Avistamientos honeypot0

Productos afectados

openbsd:openbsd

Referencias

ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/008_fd.patch(cve@mitre.org)

http://secunia.com/advisories/18296(cve@mitre.org)

http://securitytracker.com/id?1015437(cve@mitre.org)

http://www.openbsd.org/errata37.html#fd(cve@mitre.org)

http://www.osvdb.org/22231(cve@mitre.org)

http://www.securityfocus.com/bid/16144(cve@mitre.org)

ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/008_fd.patch(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/18296(af854a3a-2127-422b-91ae-364da2661108)

http://securitytracker.com/id?1015437(af854a3a-2127-422b-91ae-364da2661108)

http://www.openbsd.org/errata37.html#fd(af854a3a-2127-422b-91ae-364da2661108)

http://www.osvdb.org/22231(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/16144(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.