| Vulnerability Name: | CVE-2001-1029 (CCN-8697) | ||||||||
| Assigned: | 2001-09-20 | ||||||||
| Published: | 2001-09-20 | ||||||||
| Updated: | 2017-10-10 | ||||||||
| Summary: | libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilities checks and read arbitrary files by specifying alternate copyright or welcome files. | ||||||||
| CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
| ||||||||
| CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Obtain Information | ||||||||
| References: | Source: CCN Type: FreeBSD, Inc. FTP site /pub/FreeBSD/ Source: BUGTRAQ Type: Exploit 20010920 Local vulnerability in libutil derived with FreeBSD 4.4-RC (and earlier) Source: CCN Type: BugTraq Mailing List, Thu Sep 20 2001 - 14:48:34 CDT Local vulnerability in libutil derived with FreeBSD 4.4-RC (and earlier) Source: MITRE Type: CNA CVE-2001-1029 Source: CCN Type: FreeBSD, Inc. Web site FreeBSD 4.5 Announcement Source: OSVDB Type: UNKNOWN 6073 Source: CCN Type: OSVDB ID: 6073 OpenSSH on FreeBSD libutil Arbitrary File Read Source: XF Type: UNKNOWN bsd-libutil-privilege-dropping(8697) Source: XF Type: UNKNOWN bsd-libutil-privilege-dropping(8697) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||