Computer Security
[EN] securityvulns.ru no-pyccku


FreeBSD devfs protection bypass
Published:01.05.2014
Source:
SecurityVulns ID:13692
Type:local
Threat Level:
5/10
Description:Jailed processes are not restricted in devfs access.
Affected:FREEBSD : FreeBSD 10.0
CVE:CVE-2014-3001 (The device file system (aka devfs) in FreeBSD 10.0 before p2 does not load default rulesets when booting, which allows context-dependent attackers to bypass intended restrictions by leveraging a jailed device node process.)
Original documentdocumentFREEBSD, FreeBSD Security Advisory FreeBSD-SA-14:07.devfs (01.05.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod