CVE-2002-2092

CVE-2002-2092 describes a race condition in exec on OpenBSD ≤4.0, NetBSD ≤1.5.2, and FreeBSD ≤4.4 that lets local users gain privileges by attaching a debugger to a process before the kernel has confirmed setuid/setgid. The core issue is a window where privilege elevation can occur prior to prope...

CVE-2002-2092

Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel has determined that the process is setuid or setgid...