Multiple race conditions in the (1) Sudo monitor mode and (2) Sysjail policies in Systrace on NetBSD and OpenBSD allow local users to defeat system call interposition, and consequently bypass access control policy and auditing.
References
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2007-08-13 21:17
Updated : 2024-02-28 11:01
NVD link : CVE-2007-4305
Mitre link : CVE-2007-4305
CVE.ORG link : CVE-2007-4305
JSON object : View
Products Affected
netbsd
- netbsd
openbsd
- openbsd
todd_miller
- sudo
systrace
- systrace
sysjail
- sysjail
CWE