CVE-2001-1185

FreeBSD 4.4 - Privilege Escalation

Title source: llm

Description

Some AIO operations in FreeBSD 4.4 may be delayed until after a call to execve, which could allow a local user to overwrite memory of the new process and gain privileges.

Exploits (1)

exploitdb WORKING POC VERIFIED

by David Rufino · clocalfreebsd

https://www.exploit-db.com/exploits/21176

View Code ZIP pw:eip

References (4)

[Vendor Advisory] http://www.iss.net/security_center/static/7693.php

[Vendor Advisory] http://www.securityfocus.com/archive/1/244583

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/bid/3661

[Third Party Advisory, VDB Entry] http://www.osvdb.org/2001

Scores

EPSS 0.0040

EPSS Percentile 60.6%

Details

Status published

Products (1)

freebsd/freebsd 4.4

Published Dec 10, 2001

Tracked Since Feb 18, 2026