FreeBSD 'execl()' Local Privilege Escalation Vulnerability

Bugtraq ID: 37154
Class: Design Error
CVE: CVE-2009-4146
CVE-2009-4147
Remote: No
Local: Yes
Published: Nov 30 2009 12:00AM
Updated: Dec 14 2009 07:23PM
Credit: Nikolaos Rangos (Kingcope)
Vulnerable: FreeBSD FreeBSD 8.0-STABLE
FreeBSD FreeBSD 8.0-RELEASE
FreeBSD FreeBSD 7.2-STABLE
FreeBSD FreeBSD 7.2-RELEASE-p4
FreeBSD FreeBSD 7.2-RELEASE-p1
FreeBSD FreeBSD 7.2-RC2
FreeBSD FreeBSD 7.2-PRERELEASE
FreeBSD FreeBSD 7.1-STABLE
FreeBSD FreeBSD 7.1-RELEASE-p6
FreeBSD FreeBSD 7.1-RELEASE-p5
FreeBSD FreeBSD 7.1-RELEASE-p4
FreeBSD FreeBSD 7.1 -RELEASE-p2
FreeBSD FreeBSD 7.1 -RELEASE-p1
FreeBSD FreeBSD 7.1 -PRE-RELEASE
FreeBSD FreeBSD 7.0-STABLE
FreeBSD FreeBSD 7.0-RELEASE-p8
FreeBSD FreeBSD 7.0-RELEASE-p3
FreeBSD FreeBSD 7.0-RELEASE-p12
FreeBSD FreeBSD 7.0-RELEASE-p11
FreeBSD FreeBSD 7.0-RELEASE-p11
FreeBSD FreeBSD 7.0-RELEASE
FreeBSD FreeBSD 7.0 BETA4
FreeBSD FreeBSD 7.0 -RELENG
FreeBSD FreeBSD 7.0 -RELEASE-p9
FreeBSD FreeBSD 7.0 -PRERELEASE
FreeBSD FreeBSD 7.0
BSD Perimeter pfSense 1.2.2
BSD Perimeter pfSense 1.2.1
BSD Perimeter pfSense 1.2-RC4
BSD Perimeter pfSense 1.2-RC3
BSD Perimeter pfSense 1.2-RC2
BSD Perimeter pfSense 1.2-RC1
BSD Perimeter pfSense 1.2
BSD Perimeter pfSense 1.2
Not Vulnerable: BSD Perimeter pfSense 1.2.3


 

Privacy Statement
Copyright 2010, SecurityFocus