FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  351541
Date:      2014-04-18
Time:      14:56:43Z
Committer: ohauer

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
8675efd5-e22c-11e1-a808-002354ed89bcsudosh -- buffer overflow

ISS reports:

sudosh2 and sudosh3 are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the replay() function. By persuading a victim to replay a specially-crafted recorded sudo session, a local attacker could overflow a buffer and execute arbitrary code on the system with elevated privileges or cause the application to crash.


Discovery 2010-01-17
Entry 2012-08-09
sudosh2
le 1.0.2

sudosh3
le 3.2.0_2

http://xforce.iss.net/xforce/xfdb/55903
http://secunia.com/advisories/38349
http://secunia.com/advisories/38292