Vulnerabilities > CVE-2002-0755 - Unspecified vulnerability in Freebsd 4.4/4.5

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

freebsd

NVD

Published: 2002-08-12

Updated: 2024-11-20

Summary

Kerberos 5 su (k5su) in FreeBSD 4.5 and earlier does not verify that a user is a member of the wheel group before granting superuser privileges, which could allow unauthorized users to execute commands as root.

Vulnerable Configurations

Part	Description	Count
OS	Freebsd Freebsd Freebsd 4.5 Freebsd Freebsd 4.4	2

References

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:24.k5su.asc
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:24.k5su.asc
http://www.iss.net/security_center/static/9125.php
http://www.iss.net/security_center/static/9125.php
http://www.osvdb.org/4893
http://www.osvdb.org/4893
http://www.securityfocus.com/bid/4777
http://www.securityfocus.com/bid/4777