Back to search
CVE-2007-0166
Published: Jan 11, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
The jail rc.d script in FreeBSD 5.3 up to 6.2 does not verify pathnames when writing to /var/log/console.log during a jail start-up, or when file systems are mounted or unmounted, which allows local root users to overwrite arbitrary files, or mount/unmount files, outside of the jail via a symlink attack.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
FreeBSD-SA-07:01
vendor-advisory
x_refsource_FREEBSD
22011
vdb-entry
x_refsource_BID
32726
vdb-entry
x_refsource_OSVDB
1017505
vdb-entry
x_refsource_SECTRACK
23730
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now