Lucene search
MitreCVE-2007-4303HistoryAug 13, 2007 - 9:17 p.m.
CVE-2007-4303
2007-08-1321:17:00
mitre
web.nvd.nist.gov
29
cve-2007-4303
cerbng
race conditions
freebsd 4.8
system call interposition
privilege escalation
bypass auditing
CVSS2
6.2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
AI Score
6.9
Confidence
Low
EPSS
0
Percentile
5.2%
Multiple race conditions in (1) certain rules and (2) argument copying during VM protection, in CerbNG for FreeBSD 4.8 allow local users to defeat system call interposition and possibly gain privileges or bypass auditing, as demonstrated by modifying command lines in log-exec.cb.
Affected configurations
Node
freebsdfreebsdMatch4.8
cerbcerbngMatch0.1freebsd
ORcerbcerbngMatch0.2freebsd
ORcerbcerbngMatch0.3freebsd
ORcerbcerbngMatch0.4freebsd
| Vendor | Product | Version | CPE |
|---|---|---|---|
| freebsd | freebsd | 4.8 | cpe:2.3:o:freebsd:freebsd:4.8:*:*:*:*:*:*:* |
| cerb | cerbng | 0.1 | cpe:2.3:a:cerb:cerbng:0.1:*:freebsd:*:*:*:*:* |
| cerb | cerbng | 0.2 | cpe:2.3:a:cerb:cerbng:0.2:*:freebsd:*:*:*:*:* |
| cerb | cerbng | 0.3 | cpe:2.3:a:cerb:cerbng:0.3:*:freebsd:*:*:*:*:* |
| cerb | cerbng | 0.4 | cpe:2.3:a:cerb:cerbng:0.4:*:freebsd:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2007-4303
2007-08-13 21:00:00
prion
prion
Race condition
2007-08-13 21:17:00
nvd
nvd
CVE-2007-4303
2007-08-13 21:17:00
CVSS2
6.2
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
AI Score
6.9
Confidence
Low
EPSS
0
Percentile
5.2%
Related for CVE-2007-4303