CVE Vulnerabilities

CVE-2002-2092

Published: Dec 31, 2002 | Modified: Dec 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
3.7 LOW
AV:L/AC:H/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel has determined that the process is setuid or setgid.

Affected Software

Name Vendor Start Version End Version
Freebsd Freebsd 4.3 4.3
Freebsd Freebsd 4.1.1 4.1.1
Freebsd Freebsd 3.1 3.1
Openbsd Openbsd 2.8 2.8
Freebsd Freebsd 4.1.1 4.1.1
Freebsd Freebsd 2.2.5 2.2.5
Netbsd Netbsd 1.3 1.3
Netbsd Netbsd 1.5 1.5
Freebsd Freebsd 4.4 4.4
Freebsd Freebsd 4.3 4.3
Freebsd Freebsd 2.2.2 2.2.2
Netbsd Netbsd 1.3.1 1.3.1
Openbsd Openbsd 2.9 2.9
Freebsd Freebsd 2.2.3 2.2.3
Freebsd Freebsd 4.3 4.3
Openbsd Openbsd 2.1 2.1
Netbsd Netbsd 1.4.2 1.4.2
Freebsd Freebsd 4.2 4.2
Freebsd Freebsd 3.5.1 3.5.1
Openbsd Openbsd 2.2 2.2
Netbsd Netbsd 1.3.3 1.3.3
Openbsd Openbsd 2.0 2.0
Openbsd Openbsd 2.7 2.7
Freebsd Freebsd 4.1 4.1
Freebsd Freebsd 2.2.8 2.2.8
Netbsd Netbsd 1.5.1 1.5.1
Freebsd Freebsd 4.4 4.4
Freebsd Freebsd 4.4 4.4
Freebsd Freebsd 2.2 2.2
Freebsd Freebsd 3.0 3.0
Openbsd Openbsd 2.4 2.4
Freebsd Freebsd 3.2 3.2
Netbsd Netbsd 1.5.2 1.5.2
Freebsd Freebsd 4.2 4.2
Netbsd Netbsd 1.4.3 1.4.3
Freebsd Freebsd 2.2.4 2.2.4
Freebsd Freebsd 2.1.0 2.1.0
Freebsd Freebsd 2.2.6 2.2.6
Openbsd Openbsd 3.0 3.0
Freebsd Freebsd 3.3 3.3
Freebsd Freebsd 4.0 4.0
Freebsd Freebsd 4.1.1 4.1.1
Freebsd Freebsd 4.3 4.3
Freebsd Freebsd 3.4 3.4
Freebsd Freebsd 3.5 3.5
Netbsd Netbsd 1.4 1.4
Netbsd Netbsd 1.3.2 1.3.2
Openbsd Openbsd 2.6 2.6
Netbsd Netbsd 1.4.1 1.4.1
Openbsd Openbsd 2.5 2.5
Openbsd Openbsd 2.3 2.3
Freebsd Freebsd 2.0 2.0

References