Description
Format string vulnerability in OpenBSD yp_passwd program (and possibly other BSD-based operating systems) allows attackers to gain root privileges a malformed name.
References (3)
Core 3
Core References
Patch x_refsource_misc
ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.7/common/028_format_strings.patch
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/6125
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5635
Scores
EPSS
0.0007
EPSS Percentile
21.9%
Details
Status
published
Products (1)
openbsd/openbsd
Published
Dec 19, 2000
Tracked Since
Feb 18, 2026