exploitDog

CVE-2007-4773

Опубликовано: 15 янв. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

Systrace before 1.6.0 has insufficient escape policy enforcement.

Ссылки

http://taviso.decsystem.org/research.html
Third Party Advisory
http://taviso.decsystem.org/research.t2t
Third Party Advisory
http://www.citi.umich.edu/u/provos/systrace/
Third Party Advisory
https://www.provos.org/index.php?/archives/2007/12/C2.html
Third Party Advisory
http://taviso.decsystem.org/research.html
Third Party Advisory
http://taviso.decsystem.org/research.t2t
Third Party Advisory
http://www.citi.umich.edu/u/provos/systrace/
Third Party Advisory
https://www.provos.org/index.php?/archives/2007/12/C2.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:systrace_project:systrace:*:*:*:*:*:*:*:*

Версия до 1.6.0 (исключая)

EPSS

Процентиль: 70%

0.00633

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-415

Связанные уязвимости

CVE-2007-4773

CVSS3: 9.8

debian

почти 6 лет назад

Systrace before 1.6.0 has insufficient escape policy enforcement.

GHSA-pw94-6j5w-p4f6

CVSS3: 9.8

github

больше 3 лет назад

Systrace before 1.6.0 has insufficient escape policy enforcement.

EPSS

Процентиль: 70%

0.00633

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-415