VYPR
Unrated severityNVD Advisory· Published Apr 16, 2008· Updated Jun 16, 2026

CVE-2008-1845

CVE-2008-1845

Description

The Korn shell (aka mksh) before R33d on MirOS (aka MirBSD) does not flush the tty's I/O when invoking mksh in a new terminal, which allows local users to gain privileges by opening a virtual terminal and entering command sequences, which might later be executed in opportunistic circumstances by a different user who launches mksh and specifies that terminal with the -T option.

Affected products

6
  • Mirbsd/Miros3 versions
    cpe:2.3:o:mirbsd:miros:33:a:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:mirbsd:miros:33:a:*:*:*:*:*:*
    • cpe:2.3:o:mirbsd:miros:33:b:*:*:*:*:*:*
    • cpe:2.3:o:mirbsd:miros:*:c:*:*:*:*:*:*range: <=33
  • MirOS/mkshllm-create
    Range: <R33d
  • Mirbsd/Korn shellllm-create
    Range: <R33d
  • Mirbsd/mkshllm-fuzzy
    Range: <R33d

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.