FreeBSD : FreeBSD -- Insufficient environment sanitization in jail(8) (f6eb2279-ca3f-11df-aade-0050568f000c)

High Nessus Plugin ID 50338


The remote FreeBSD host is missing a security-related update.


The jail(8) utility does not change the current working directory while imprisoning. The current working directory can be accessed by its descendants.


Update the affected package.

See Also

Plugin Details

Severity: High

ID: 50338

File Name: freebsd_pkg_f6eb2279ca3f11dfaade0050568f000c.nasl

Version: $Revision: 1.7 $

Type: local

Published: 2010/10/26

Modified: 2016/08/10

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:FreeBSD, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info, Settings/ParanoidReport

Patch Publication Date: 2010/10/24

Vulnerability Publication Date: 2010/05/27

Reference Information

FreeBSD: SA-10:04.jail