[security] Debian Security Advisory (calife)
Lorenzo Iannuzzi
nakis a libero.it
Gio 11 Mar 2004 21:09:16 CET
http://www.debian.org/security/
Calife, a program which provides super user privileges to specific
users, was found to contain a buffer overflow related to the
getpass(3) library function. A local attacker could potentially
exploit this vulnerability, given knowledge of a local user's password
and the presence of at least one entry in /etc/calife.auth, to execute
arbitrary code with root privileges.
--
Ciao e alla prossima!
Lorenzo
-------------- parte successiva --------------
Un allegato non testuale è stato rimosso....
Nome: non disponibile
Tipo: application/pgp-signature
Dimensione: 244 bytes
Descrizione: non disponibile
Url: http://itlists.org/pipermail/security/attachments/20040311/14e0f467/attachment.pgp
Maggiori informazioni sulla lista
security