CVE-2006-5778
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
CVE
CVE-2006-5778
Status
Candidate
Description
ftpd in linux-ftpd 0.17, and possibly other versions, performs a chdir before setting the UID, which allows local users to bypass intended access restrictions by redirecting their home directory to a restricted directory.
Severity
Medium
CVSS score
4,9
CVSS vector
(AV:L/AC:L/Au:NR/C:P/I:P/A:P/B:N)
Phase
Assigned (07.11.2006)
NVD:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5778
References
BID :
21000
CONFIRM :
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=3...
DEBIAN :
DSA-1217
FULLDISC :
20060825 ftpd chdir() while root
GENTOO :
GLSA-200611-05
SECUNIA :
22997
SecurityVulns:
Netkit FTP Server protection bypass
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
