CVE-2009-0342

HIGH

Description

Niels Provos Systrace before 1.6f on the x86_64 Linux platform allows local users to bypass intended access restrictions by making a 64-bit syscall with a syscall number that corresponds to a policy-compliant 32-bit syscall.

References

http://scary.beasts.org/security/CESA-2009-001.html

http://scarybeastsecurity.blogspot.com/2009/01/bypassing-syscall-filtering.html

http://www.citi.umich.edu/u/provos/systrace/

http://www.securityfocus.com/archive/1/500377/100/0/threaded

http://www.securityfocus.com/bid/33417

Details

Source: MITRE

Published: 2009-01-29

Updated: 2018-10-11

Type: CWE-264

Risk Information

CVSS v2.0

Base Score: 7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.9

Severity: HIGH

Vulnerable Software

Configuration 1

AND

OR

cpe:2.3:a:provos:systrace:1.1:*:*:*:*:*:*:*

cpe:2.3:a:provos:systrace:1.2:*:*:*:*:*:*:*

cpe:2.3:a:provos:systrace:1.3:*:*:*:*:*:*:*

cpe:2.3:a:provos:systrace:1.4:*:*:*:*:*:*:*

cpe:2.3:a:provos:systrace:1.5:*:*:*:*:*:*:*

cpe:2.3:a:provos:systrace:1.6:*:*:*:*:*:*:*

cpe:2.3:a:provos:systrace:1.6a:*:*:*:*:*:*:*

cpe:2.3:a:provos:systrace:1.6b:*:*:*:*:*:*:*

cpe:2.3:a:provos:systrace:1.6c:*:*:*:*:*:*:*

cpe:2.3:a:provos:systrace:1.6d:*:*:*:*:*:*:*

cpe:2.3:a:provos:systrace:*:*:*:*:*:*:*:*

OR

cpe:2.3:o:linux:linux_kernel:_nil_:_nil_:x86_64:*:*:*:*:*

Tenable Plugins

View all (1 total)

IDNameProductFamilySeverity
79456OracleVM 2.1 : kernel (OVMSA-2009-0009)NessusOracleVM Local Security Checks
high