Title: FreeBSD bmon Port Relative Path Subversion Privilege Escalation
May 29, 2004
Oct 16, 2004
A bandwidth monitor, bmon, on FreeBSD contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when the FreeBSD port system installs bmon with setuid superuser privileges.
Local Access Required
Loss of Integrity
Upgrade to version 1.2.1_2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.