This CVE name corresponds to:
| Entered | Topic |
|---|---|
| 2004-04-07 | jailed processes can attach to other jails |
The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.
| Type | CVE Entry |
| Name | CVE-2004-0126 |
The jail_attach system call in FreeBSD 5.1 and 5.2 changes the directory of a calling process even if the process doesn't have permission to change directory, which allows local users to gain read/write privileges to files and directories within another jail.
| Source | Reference |
|---|---|
| FREEBSD | FreeBSD-SA-04:03 |
| XF | freebsd-jailattach-gain-privileges(15344) |
| BID | 9762 |
| OSVDB | 4101 |
Copyright © 2005 The MITRE Corporation.
Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright
information.