FreeBSD libmytinfo Buffer Overflow Vulnerability

libmytinfo is a library used in FreeBSD which allows users to specify alternate termcap files or entries via the TERMCAP environment variable. The library itself is flawed and does not check bounds on user supplied data and hence suffers from a buffer overflow. Programs which link against this library and are setuid/setgid could be exploited to elavate privileges up to and possibly including root.

This problem is not believed to affect any base binaries in the FreeBSD system; rather, it is thought that this affects only ports. However, this may prove to be incorrect over time.


Privacy Statement
Copyright 2010, SecurityFocus