VULHUB ™

It is reported that bmon is susceptible to a privilege escalation vulnerability if installed with setuid permissions. This vulnerability allows local attackers to execute arbitrary code with the privileges of the bmon package. It is reported that the FreeBSD port system installs bmon with setuid superuser privileges, allowing local attackers to execute arbitrary code with superuser privileges. This vulnerability is reported to exist in bmon version 1.2.1 on any platform that installs it with setuid privileges. Other versions may also be affected. For FreeBSD, versions prior to 1.2.1_2 are reported susceptible. Other platforms that install bmon with setuid privileges are unknown at this time.

It is reported that bmon is susceptible to a privilege escalation vulnerability if installed with setuid permissions. This vulnerability allows local attackers to execute arbitrary code with the privileges of the bmon package. It is reported that the FreeBSD port system installs bmon with setuid superuser privileges, allowing local attackers to execute arbitrary code with superuser privileges. This vulnerability is reported to exist in bmon version 1.2.1 on any platform that installs it with setuid privileges. Other versions may also be affected. For FreeBSD, versions prior to 1.2.1_2 are reported susceptible. Other platforms that install bmon with setuid privileges are unknown at this time.