CVE-2002-2092
OpenBSD <4.0-NetBSD <1.5.2-FreeBSD <4.4 - Privilege Escalation
Title source: llmDescription
Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel has determined that the process is setuid or setgid.
References (5)
Core 5
Core References
Vendor Advisory vendor-advisory
x_refsource_freebsd
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:08.exec.asc
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3891
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/19475
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/7945
Vendor Advisory vendor-advisory
x_refsource_netbsd
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-001.txt.asc
Scores
EPSS
0.0007
EPSS Percentile
21.0%
Details
Status
published
Products (42)
freebsd/freebsd
2.0
freebsd/freebsd
2.1.0
freebsd/freebsd
2.2
freebsd/freebsd
2.2.2
freebsd/freebsd
2.2.3
freebsd/freebsd
2.2.4
freebsd/freebsd
2.2.5
freebsd/freebsd
2.2.6
freebsd/freebsd
2.2.8
freebsd/freebsd
3.0
... and 32 more
Published
Dec 31, 2002
Tracked Since
Feb 18, 2026