FreeBSD : helvis -- arbitrary file deletion problem (0cf3480d-5fdf-11d9-b721-00065be4b5b6)
Low Nessus Plugin ID 18836
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionThe setuid root elvprsv utility, used to preserve recovery helvis files, can be abused by local users to delete with root privileges.
The problem is that elvprsv deletes files when it thinks they have become corrupt. When elvprsv is pointed to a normal file then it will almost always think the file is corrupt and deletes it. This behavior may be exploited by local attackers to delete critical files.
SolutionUpdate the affected packages.