Computer Security

FreeBSD jail escape
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



FreeBSD jail escape
Published:28.05.2010
Source:BUGTRAQ
SecurityVulns ID:10883
Type:local
Level:6/10
Description:It's possible to access current working directory.
Affected:FREEBSD : FreeBSD 8.0
CVE:CVE-2010-2022 (jail.c in jail in FreeBSD 8.0 and 8.1-PRERELEASE, when the "-l -U root" options are omitted, does not properly restrict access to the current working directory, which might allow local users to read, modify, or create arbitrary files via standard filesystem operations.)
Original documentdocumentFREEBSD, FreeBSD Security Advisory FreeBSD-SA-10:04.jail (28.05.2010)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru