CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
0.4%
The systrace_exit function in the systrace utility for NetBSD-current and 2.0 before April 16, 2004, and certain FreeBSD ports, does not verify the owner of the /dec/systrace connection before setting euid to 0, which allows local users to gain root privileges.
Vendor | Product | Version | CPE |
---|---|---|---|
niels | provos_systrace | 1.1 | cpe:2.3:a:niels:provos_systrace:1.1:*:*:*:*:*:*:* |
niels | provos_systrace | 1.2 | cpe:2.3:a:niels:provos_systrace:1.2:*:*:*:*:*:*:* |
niels | provos_systrace | 1.3 | cpe:2.3:a:niels:provos_systrace:1.3:*:*:*:*:*:*:* |
niels | provos_systrace | 1.4 | cpe:2.3:a:niels:provos_systrace:1.4:*:*:*:*:*:*:* |
niels | provos_systrace | 1.5 | cpe:2.3:a:niels:provos_systrace:1.5:*:*:*:*:*:*:* |
vladimir_kotal | systrace_port_for_freebsd | 2004-03-09 | cpe:2.3:a:vladimir_kotal:systrace_port_for_freebsd:2004-03-09:*:*:*:*:*:*:* |
vladimir_kotal | systrace_port_for_freebsd | 2004-06-02 | cpe:2.3:a:vladimir_kotal:systrace_port_for_freebsd:2004-06-02:*:*:*:*:*:*:* |
netbsd | netbsd | 2.0 | cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:* |