CVE-2002-0754

UNRATED

Description

Kerberos 5 su (k5su) in FreeBSD 4.4 and earlier relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them.

Affected products

FreeBSD / FreeBSD4.4 – 4.4
FreeBSD / FreeBSD4.3 – 4.3
FreeBSD / FreeBSD4.3 – 4.3
FreeBSD / FreeBSD4.0 – 4.0
FreeBSD / FreeBSD4.1 – 4.1
FreeBSD / FreeBSD4.1.1 – 4.1.1
FreeBSD / FreeBSD4.1.1 – 4.1.1
FreeBSD / FreeBSD4.1.1 – 4.1.1
FreeBSD / FreeBSD4.2 – 4.2
FreeBSD / FreeBSD4.2 – 4.2
FreeBSD / FreeBSD4.3 – 4.3
FreeBSD / heimdal0.4e – 0.4e
kth / heimdal0.4e – 0.4e

References

VENDOR_ADVISORYftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:07.k5su.asc
MISChttp://www.securityfocus.com/bid/3919
MISChttp://www.iss.net/security_center/static/7956.php