CVE-2001-1180
FreeBSD 4.3 - Privilege Escalation via Shared Signal Handler
Title source: llmDescription
FreeBSD 4.3 does not properly clear shared signal handlers when executing a process, which allows local users to gain privileges by calling rfork with a shared signal handler, having the child process execute a setuid program, and sending a signal to the child.
References (7)
Core 7
Core References
Various Sources third-party-advisory
government-resource
x_refsource_ciac
http://ciac.llnl.gov/ciac/bulletins/l-111.shtml
Various Sources vendor-advisory
x_refsource_freebsd
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:42.signal.v1.1.asc
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6829
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/1897
Exploit, Patch, Vendor Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-07/0179.html
Patch, Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/943633
Exploit, Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3007
Scores
EPSS
0.0017
EPSS Percentile
38.2%
Details
Status
published
Products (4)
freebsd/freebsd
4.0
freebsd/freebsd
4.1
freebsd/freebsd
4.2
freebsd/freebsd
4.3
Published
Jul 10, 2001
Tracked Since
Feb 18, 2026