Lucene search
HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-2022
cve-2010-2022
jail.c
freebsd 8.0
freebsd 8.1-prerelease
access restriction
local users
filesystem operations
3.3 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:P/A:N
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
jail.c in jail in FreeBSD 8.0 and 8.1-PRERELEASE, when the “-l -U root” options are omitted, does not properly restrict access to the current working directory, which might allow local users to read, modify, or create arbitrary files via standard filesystem operations.
Affected configurations
Node
freebsdfreebsdMatch8.0
ORfreebsdfreebsdMatch8.1-prerelease
| CPE | Name | Operator | Version |
|---|---|---|---|
| freebsd:freebsd | freebsd | eq | 8.0 |
| freebsd:freebsd | freebsd | eq | 8.1-prerelease |
Related
securityvulns
securityvulns
FreeBSD jail escape
2010-05-28 00:00:00
FreeBSD Security Advisory FreeBSD-SA-10:04.jail
2010-05-28 00:00:00
nvd
nvd
CVE-2010-2022
2010-05-28 18:30:01
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-10:04.jail.asc)
2010-06-03 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-10:04.jail.asc)
2010-06-03 00:00:00
FreeBSD Ports: FreeBSD
2010-11-17 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-10:04.jail
2010-05-27 00:00:00
cvelist
cvelist
CVE-2010-2022
2022-10-03 16:21:08
seebug
seebug
FreeBSD 8.0 jail(8)实现本地权限提升漏洞
2010-05-31 00:00:00
prion
prion
Code injection
2010-05-28 18:30:00
3.3 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:P/A:N
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2010-2022