Computer Security
[EN] securityvulns.ru no-pyccku


FreeBSD privilege escalation
Published:14.07.2010
Source:
SecurityVulns ID:10989
Type:local
Threat Level:
5/10
Description:Under some conditions it's possible to bypass read-onyy flag for mbuf pages.
Affected:FREEBSD : FreeBSD 8.0
 FREEBSD : FreeBSD 7.3
 FREEBSD : FreeBSD 8.1
CVE:CVE-2010-2693 (FreeBSD 7.1 through 8.1-PRERELEASE does not copy the read-only flag when creating a duplicate mbuf buffer reference, which allows local users to cause a denial of service (system file corruption) and gain privileges via the sendfile system call.)
Original documentdocumentFREEBSD, FreeBSD Security Advisory FreeBSD-SA-10:07.mbuf (14.07.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod