FreeBSD : cdrdao -- unspecified privilege escalation vulnerability (d51a7e6e-c546-11d9-9aed-000e0c2e438a)

This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

The developers of cdrdao report that there is a potential root exploit
in the software. In order to be able to succesfully exploit this
vulnerability cdrdao must be installed setuid root. When succesfully
exploited a local user might get escalated privileges. By default this
port is not installed setuid root.

See also :

http://sourceforge.net/forum/forum.php?forum_id=466399
http://www.nessus.org/u?87d1c032

Solution :

Update the affected package.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 19136 (freebsd_pkg_d51a7e6ec54611d99aed000e0c2e438a.nasl)

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now