July 9, 2001

FreeBSD: 'hanterm' ports vulnerability

Author: JT Smith

From LinuxSecurity.com: "hanterm is a modified version of xterm which supports Korean language
entry and display. It is included in the FreeBSD ports collection in
two versions: ko-hanterm and ko-hanterm-xf.

The hanterm binary is installed with setuid root permissions, but
contains insecure code which allows unprivileged local users to obtain
root access on the local system."

Category:

  • Linux
Click Here!