Vulnerability Description
libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilities checks and read arbitrary files by specifying alternate copyright or welcome files.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openbsd | Openssh | 4.5 |
| Freebsd | Freebsd | <= 4.4 |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-09/0173.htmlExploit
- http://www.osvdb.org/6073
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8697
- http://archives.neohapsis.com/archives/bugtraq/2001-09/0173.htmlExploit
- http://www.osvdb.org/6073
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8697
FAQ
What is CVE-2001-1029?
CVE-2001-1029 is a vulnerability with a CVSS score of 2.1 (LOW). libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilitie...
How severe is CVE-2001-1029?
CVE-2001-1029 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1029?
Check the references section above for vendor advisories and patch information. Affected products include: Openbsd Openssh, Freebsd Freebsd.