FreeBSD : SA-04:03.jail

Medium Nessus Plugin ID 12556


The remote device is missing a vendor-supplied security patch


The remote host is running a version of the FreeBSD kernel which contains a bug which may allow a jailed process to attach to another jail.

An attacker compromised a jailed process on the remote host could exploit this flaw to switch to other jails on the system.


Plugin Details

Severity: Medium

ID: 12556

File Name: freebsd_jailed_processes.nasl

Version: $Revision: 1.13 $

Published: 2004/07/06

Modified: 2010/10/06

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 4.6

Temporal Score: 3.4

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

Required KB Items: Host/FreeBSD/pkg_info

Exploit Available: false

Exploit Ease: No known exploits are available

Reference Information

CVE: CVE-2004-0126

BID: 9762