← back
CVE-2002-0557

CVE-2002-0557

EPSS 1.2%
Vulnerability in OpenBSD 3.0, when using YP with netgroups in the password database, causes (1) rexec or (2) rsh to run another user's shell, or (3) atrun to change to a different user's directory, possibly due to memory allocation failures or an incorrect call to auth_approval().
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.iss.net/security_center/static/8625.phphttp://www.openbsd.org/errata30.html#approvalhttp://www.securityfocus.com/bid/4338