CVE-2005-2807 Information

Description

frox 0.7.18 when running setuid root does not properly drop privileges when reading a configuration file which allows local users to read portions of arbitrary files via the -f command line option.

Reference

http://www.securityfocus.com/archive/1/409667 http://www.securityfocus.com/bid/14711