FreeBSD : sudosh -- buffer overflow (8675efd5-e22c-11e1-a808-002354ed89bc)
High Nessus Plugin ID 61481
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionISS reports :
sudosh2 and sudosh3 are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the replay() function. By persuading a victim to replay a specially crafted recorded sudo session, a local attacker could overflow a buffer and execute arbitrary code on the system with elevated privileges or cause the application to crash.
SolutionUpdate the affected packages.