CVE-2008-1215

Severity

46%

Complexity

39%

Confidentiality

106%

Stack-based buffer overflow in the command_Expand_Interpret function in command.c in ppp (aka user-ppp), as distributed in FreeBSD 6.3 and 7.0, OpenBSD 4.1 and 4.2, and the net/userppp package for NetBSD, allows local users to gain privileges via long commands containing "~" characters.

Stack-based buffer overflow in the command_Expand_Interpret function in command.c in ppp (aka user-ppp), as distributed in FreeBSD 6.3 and 7.0, OpenBSD 4.1 and 4.2, and the net/userppp package for NetBSD, allows local users to gain privileges via long commands containing "~" characters.

CVSS 2.0 Base Score 4.6. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:P/I:P/A:P).

Overview

First reported 16 years ago

2008-03-09 02:44:00

Last updated 7 years ago

2017-08-08 01:29:00

Affected Software

FreeBSD 6.3

6.3

FreeBSD 7.0

7.0

NetBSD

OpenBSD 4.1

4.1

OpenBSD 4.2

4.2

References

29234

Vendor Advisory

29238

Vendor Advisory

29240

Vendor Advisory

[4.1] 20080307 014: SECURITY FIX: March 7, 2008

[4.2] 20080307 009: SECURITY FIX: March 7, 2008

20080229 *BSD user-ppp local root (when conditions permit)

Exploit

20080301 Re: *BSD user-ppp local root (when conditions permit)

Exploit

28090

Exploit

userppp-commandexpandinterpret-bo(41034)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.