Freebsd : Security Vulnerabilities, CVEs, Published In November 2011
Directory traversal vulnerability in openpam_configure.c in OpenPAM before r478 on FreeBSD 8.1 allows local users to load arbitrary DSOs and gain privileges via a .. (dot dot) in the service_name argument to the pam_start function, as demonstrated by a .. in the -c option to kcheckpass.
Max CVSS
6.9
EPSS Score
0.06%
Published
2011-11-17
Updated
2017-08-29
1 vulnerabilities found