Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The jail rc.d script in FreeBSD 5.3 up to 6.2 does not verify pathnames when writing to /var/log/console.log during a jail start-up, or when file systems are mounted or unmounted, which allows local root users to overwrite arbitrary files, or mount/unmount files, outside of the jail via a symlink attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FreeBSD Jail rc.d脚本多个本地符号链接漏洞
Vulnerability Description
FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 jail(2)系统调用允许系统管理员将进程及其所有子代锁定在一个环境中,这样即使进程拥有超级用户权限,也只能对该环境外的系统造成很有限的影响。由于对可能的符号链接缺少处理,主机的jail rc.d(8)脚本受符号链接攻击的影响。通过用符号链接替换牢笼中的/var/log/console.log,牢笼中的超级用户(root)就可能使用任意内容覆盖牢笼外主机系统上的任意文件。这可能导致以不受禁锢的超级用户权限执行任意命令。类
CVSS Information
N/A
Vulnerability Type
N/A