healthd Buffer Overflow Vulnerability

A vulnerability is present in the healthd program, by Jim Housley. While exact details were notmade public, the vulnerability is a local buffer overrun that allows a local attacker to obtain root privileges. This vulnerability was found by the FreeBSD ports auditing team. While the FreeBSD port was vulnerable, healthd is not installed by default; instead it is part of the ports collection, a collection of over 3200 pieces of software ported to FreeBSD.


 

Privacy Statement
Copyright 2010, SecurityFocus