Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2009-0343

Published: 29/01/2009 Updated: 11/10/2018
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Niels Provos

Vulnerability Summary

Niels Provos Systrace 1.6f and previous versions on the x86_64 Linux platform allows local users to bypass intended access restrictions by making a 32-bit syscall with a syscall number that corresponds to a policy-compliant 64-bit syscall, related to race conditions that occur in monitoring 64-bit processes.

Vulnerable Product Search on Vulmon Subscribe to Product

niels_provos systrace 1.6b

niels_provos systrace 1.6c

niels_provos systrace 1.1

niels_provos systrace 1.2

niels_provos systrace 1.6d

niels_provos systrace

niels_provos systrace 1.3

niels_provos systrace 1.4

niels_provos systrace 1.5

niels_provos systrace 1.6

niels_provos systrace 1.6a

Exploits

Exploit DB: Systrace 1.x (Linux Kernel x64) - Aware Local Privilege Escalation
/* source: wwwsecurityfocuscom/bid/33417/info Systrace is prone to a local privilege-escalation vulnerability A local attacker may be able to exploit this issue to bypass access control restrictions and make unintended system calls, which may result in an elevation of privileges Versions prior to Systrace 16f are vulnerable */ int ...

References

CWE-264http://scary.beasts.org/security/CESA-2009-001.htmlhttp://www.citi.umich.edu/u/provos/systrace/http://scarybeastsecurity.blogspot.com/2009/01/bypassing-syscall-filtering.htmlhttp://www.securityfocus.com/bid/33417http://www.securityfocus.com/archive/1/500377/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/32751/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2023-52689CVE-2024-23803client sideCVE-2023-52696information disclosureCVE-2024-35843CVE-2024-27130CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook