CVE-2008-1056 Information

Description

Multiple stack-based buffer overflows in Symark PowerBroker 2.8 through 5.0.1 allow local users to gain privileges via a long argv[0] string when executing (1) pbrun (2) pbsh or (3) pbksh. NOTE: the product is often installed in environments with trust relationships that facilitate subsequent remote compromises.

Reference

http://secunia.com/advisories/29111 http://www.mnin.org/advisories/2008_symarkpb.pdf http://www.securityfocus.com/bid/28015 http://www.symark.com/support/PBFeb2008Announcement.html https://exchange.xforce.ibmcloud.com/vulnerabilities/40872