Lucene search

K

Systrace Security Vulnerabilities

cve
cve

CVE-2007-4773

Systrace before 1.6.0 has insufficient escape policy...

9.8CVSS

9.4AI Score

0.004EPSS

2020-01-15 05:15 PM
14
cve
cve

CVE-2009-0343

Niels Provos Systrace 1.6f and earlier on the x86_64 Linux platform allows local users to bypass intended access restrictions by making a 32-bit syscall with a syscall number that corresponds to a policy-compliant 64-bit syscall, related to race conditions that occur in monitoring 64-bit...

6AI Score

0.0004EPSS

2009-01-29 07:30 PM
33
cve
cve

CVE-2009-0342

Niels Provos Systrace before 1.6f on the x86_64 Linux platform allows local users to bypass intended access restrictions by making a 64-bit syscall with a syscall number that corresponds to a policy-compliant 32-bit...

6AI Score

0.0004EPSS

2009-01-29 07:30 PM
29
cve
cve

CVE-2007-4305

Multiple race conditions in the (1) Sudo monitor mode and (2) Sysjail policies in Systrace on NetBSD and OpenBSD allow local users to defeat system call interposition, and consequently bypass access control policy and...

6.4AI Score

0.0004EPSS

2007-08-13 09:17 PM
22
cve
cve

CVE-2004-2012

The systrace_exit function in the systrace utility for NetBSD-current and 2.0 before April 16, 2004, and certain FreeBSD ports, does not verify the owner of the /dec/systrace connection before setting euid to 0, which allows local users to gain root...

7AI Score

0.0004EPSS

2005-05-10 04:00 AM
23