Vulnerabilities > CVE-2001-1091 - Unspecified vulnerability in Netbsd
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The (1) dump and (2) dump_lfs commands in NetBSD 1.4.x through 1.5.1 do not properly drop privileges, which could allow local users to gain privileges via the RCMD_CMD environment variable.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 6 |