FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mcweject -- exploitable buffer overflow

Affected packages
mcweject <= 0.9

Details

VuXML ID 84d3fbb2-e607-11db-8a32-000c76189c4c
Discovery 2007-03-27
Entry 2007-04-08

CVE reports:

Buffer overflow in eject.c in Jason W. Bacon mcweject 0.9 on FreeBSD, and possibly other versions, allows local users to execute arbitrary code via a long command line argument, possibly involving the device name.

References

CVE Name CVE-2007-1719
FreeBSD PR ports/111365
URL http://www.milw0rm.com/exploits/3578