Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2008-1845

The Korn shell (aka mksh) before R33d on MirOS (aka MirBSD) does not flush the tty's I/O when invoking mksh in a new terminal, which allows local users to gain privileges by opening a virtual terminal and entering command sequences, which might later be executed in opportunistic circumstances by a different user who launches mksh and specifies that terminal with the -T option.

  • Published: Apr 16, 2008
  • Updated: Apr 13, 2023
  • CVE: CVE-2008-1845
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
mirbsd / miros - 33.x
mirbsd / miros 33-b 33-b.x
mirbsd / miros 33-a 33-a.x