OpenBSD NIS YP yp_passwd Malformed Name Format String
Local Access Required,
Local / Remote,
Loss of Integrity
OpenBSD contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered due to a flaw in the yp_passwd program, which could allow a malicious user to supply a malformed name to the printf() function. This flaw may lead to a loss of integrity.
Currently, there are no known workarounds or upgrades to correct this issue. However, OpenBSD has released a patch to address this vulnerability.