Executive Summary

Informations
NameCVE-2007-0166First vendor Publication2007-01-11
VendorCveLast vendor Modification2008-11-15

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:S/C:C/I:C/A:C)
Cvss Base Score6.6Attack RangeLocal
Cvss Impact Score10Attack ComplexityMedium
Cvss Expoit Score2.7AuthenticationRequires single instance
Calculate full CVSS 2.0 Vectors scores

Security Protection

ImpactsProvides administrator access : Allows complete confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service.

Detail

The jail rc.d script in FreeBSD 5.3 up to 6.2 does not verify pathnames when writing to /var/log/console.log during a jail start-up, or when file systems are mounted or unmounted, which allows local root users to overwrite arbitrary files, or mount/unmount files, outside of the jail via a symlink attack.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0166

CPE : Common Platform Enumeration

TypeDescriptionCount
Os441

OpenVAS Exploits

DateDescription
2008-09-04Name : FreeBSD Security Advisory (FreeBSD-SA-07:01.jail.asc)
File : nvt/freebsdsa_jail1.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
32726FreeBSD jail rc.d Symlink Privilege Escalation

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/22011
FREEBSD http://security.freebsd.org/advisories/FreeBSD-SA-07:01.jail.asc
SECTRACK http://securitytracker.com/id?1017505

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
DateInformations
2019-03-22 12:01:49
  • Multiple Updates
2019-03-20 12:02:06
  • Multiple Updates
2019-03-19 12:02:19
  • Multiple Updates
2017-03-30 12:01:26
  • Multiple Updates
2016-06-28 16:04:37
  • Multiple Updates
2016-04-26 15:37:03
  • Multiple Updates
2013-05-11 00:40:19
  • Multiple Updates