FreeBSD : sge -- local root exploit in bundled rsh executable (57a0242d-8c4e-11da-8ddf-000ae42e9b93)

high Nessus Plugin ID 21429

Synopsis

The remote FreeBSD host is missing one or more security-related updates.

Description

Sun Microsystems reports :

The SGE 6.0u7_1 release fixes a security bug which can allow malicious users to gain root access.

Solution

Update the affected packages.

See Also

http://www.nessus.org/u?53b40b6b

http://www.nessus.org/u?4cc7b0c8

Plugin Details

Severity: High

ID: 21429

File Name: freebsd_pkg_57a0242d8c4e11da8ddf000ae42e9b93.nasl

Version: 1.14

Type: local

Published: 5/13/2006

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:sge, p-cpe:/a:freebsd:freebsd:sgeee, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 1/23/2006

Vulnerability Publication Date: 12/23/2005