← Voltar para CVEs
CVE-2001-1029
N/ADescricao
libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilities checks and read arbitrary files by specifying alternate copyright or welcome files.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado9/20/2001
Ultima modificacao4/16/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
freebsd:freebsdopenbsd:openssh
Referencias
http://www.osvdb.org/6073(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/8697(cve@mitre.org)
http://archives.neohapsis.com/archives/bugtraq/2001-09/0173.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/6073(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/8697(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.