NetBSD/FreeBSD Port Systrace Exit Routine Access Validation Privilege Escalation Vulnerability

A vulnerability has been reported that affects Systrace on NetBSD, as well as the FreeBSD port by Vladimir Kotal.

The source of the issue is insufficient access validation when a systraced process is restoring privileges.

This issue can be exploited by a local attacker to gain root privileges on a vulnerable system.


 

Privacy Statement
Copyright 2010, SecurityFocus