Vulnerability Details CVE-1999-1385
Buffer overflow in ppp program in FreeBSD 2.1 and earlier allows local users to gain privileges via a long HOME environment variable.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.0%
CVSS Severity
CVSS v2 Score 7.2
References
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/old/FreeBSD-SA-96:20.stack-overflow.asc
- http://marc.info/?l=bugtraq&m=87602167420332&w=2
- http://www.iss.net/security_center/static/7465.php
- http://www.osvdb.org/6085
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/old/FreeBSD-SA-96:20.stack-overflow.asc
- http://marc.info/?l=bugtraq&m=87602167420332&w=2
- http://www.iss.net/security_center/static/7465.php
- http://www.osvdb.org/6085
Products affected by CVE-1999-1385
-
cpe:2.3:o:freebsd:freebsd:-
-
cpe:2.3:o:freebsd:freebsd:0.4_1
-
cpe:2.3:o:freebsd:freebsd:1.0
-
cpe:2.3:o:freebsd:freebsd:1.1
-
cpe:2.3:o:freebsd:freebsd:1.1.5
-
cpe:2.3:o:freebsd:freebsd:1.1.5.1
-
cpe:2.3:o:freebsd:freebsd:1.2
-
cpe:2.3:o:freebsd:freebsd:1.5
-
cpe:2.3:o:freebsd:freebsd:2.0
-
cpe:2.3:o:freebsd:freebsd:2.0.1
-
cpe:2.3:o:freebsd:freebsd:2.0.5
-
cpe:2.3:o:freebsd:freebsd:2.1
-
cpe:2.3:o:freebsd:freebsd:2.1.0
-
cpe:2.3:o:freebsd:freebsd:2.1.5
-
cpe:2.3:o:freebsd:freebsd:2.1.6
-
cpe:2.3:o:freebsd:freebsd:2.1.6.1