FreeBSD : mksh -- TTY attachment privilege escalation (86c05550-12c1-11dd-bab7-0016179b2dd5)
High Nessus Plugin ID 32067
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionSecunia reports :
The vulnerability is caused due to an error when attaching to a TTY via the -T command line switch. This can be exploited to execute arbitrary commands with the privileges of the user running mksh via characters previously written to the attached virtual console.
SolutionUpdate the affected package.