Total vulnerabilities in the database
FreeBSD 4.5 and earlier, and possibly other BSD-based operating systems, allows local users to write to or read from restricted files by closing the file descriptors 0 (standard input), 1 (standard output), or 2 (standard error), which may then be reused by a called setuid process that intended to perform I/O on normal files.
| Software | From | Fixed in |
|---|---|---|
| sun / solaris | 2.5.1 | 2.5.1.x |
| freebsd / freebsd | 4.5-stable | 4.5-stable.x |
| freebsd / freebsd | 4.5-release | 4.5-release.x |
| openbsd / openbsd | 2.1 | 2.1.x |
| sun / sunos | 5.7 | 5.7.x |
| openbsd / openbsd | 2.2 | 2.2.x |
| sun / sunos | 5.8 | 5.8.x |
| openbsd / openbsd | 2.0 | 2.0.x |
| freebsd / freebsd | 4.4-releng | 4.4-releng.x |
| sun / solaris | 7.0 | 7.0.x |
| sun / sunos | 5.5.1 | 5.5.1.x |
| openbsd / openbsd | 2.3 | 2.3.x |
| sun / solaris | 2.6 | 2.6.x |
| sun / solaris | 8.0 | 8.0.x |