CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-4303

Multiple race conditions in (1) certain rules and (2) argument copying during VM protection, in CerbNG for FreeBSD 4.8 allow local users to defeat system call interposition and possibly gain privileges or bypass auditing, as demonstrated by modifying command lines in log-exec.cb.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.2%

CVSS Severity

CVSS v2 Score 6.2

References

http://secunia.com/advisories/26474
http://www.securityfocus.com/bid/25259
http://www.watson.org/~robert/2007woot/
http://secunia.com/advisories/26474
http://www.securityfocus.com/bid/25259
http://www.watson.org/~robert/2007woot/

Products affected by CVE-2007-4303

Cerb » Cerbng » Version: 0.1

cpe:2.3:a:cerb:cerbng:0.1
Cerb » Cerbng » Version: 0.2

cpe:2.3:a:cerb:cerbng:0.2
Cerb » Cerbng » Version: 0.3

cpe:2.3:a:cerb:cerbng:0.3
Cerb » Cerbng » Version: 0.4

cpe:2.3:a:cerb:cerbng:0.4
Freebsd » Freebsd » Version: 4.8

cpe:2.3:o:freebsd:freebsd:4.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-4303

Products

Pricing

Contact Us