jailed processes can manipulate host routing tables

ID FB5E227E-B8C6-11D8-B88C-000D610A3B12
Type freebsd
Reporter FreeBSD
Modified 2004-02-03T00:00:00


A programming error resulting in a failure to verify that an attempt to manipulate routing tables originated from a non-jailed process. Jailed processes running with superuser privileges could modify host routing tables. This could result in a variety of consequences including packets being sent via an incorrect network interface and packets being discarded entirely.