Описание
The systrace_exit function in the systrace utility for NetBSD-current and 2.0 before April 16, 2004, and certain FreeBSD ports, does not verify the owner of the /dec/systrace connection before setting euid to 0, which allows local users to gain root privileges.
Ссылки
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:niels:provos_systrace:1.1:*:*:*:*:*:*:*
cpe:2.3:a:niels:provos_systrace:1.2:*:*:*:*:*:*:*
cpe:2.3:a:niels:provos_systrace:1.3:*:*:*:*:*:*:*
cpe:2.3:a:niels:provos_systrace:1.4:*:*:*:*:*:*:*
cpe:2.3:a:niels:provos_systrace:1.5:*:*:*:*:*:*:*
cpe:2.3:a:vladimir_kotal:systrace_port_for_freebsd:2004-03-09:*:*:*:*:*:*:*
cpe:2.3:a:vladimir_kotal:systrace_port_for_freebsd:2004-06-02:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00306
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
The systrace_exit function in the systrace utility for NetBSD-current and 2.0 before April 16, 2004, and certain FreeBSD ports, does not verify the owner of the /dec/systrace connection before setting euid to 0, which allows local users to gain root privileges.
EPSS
Процентиль: 53%
0.00306
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other