CVE-2009-0343

Niels Provos Systrace <1.6f - Privilege Escalation

Title source: llm

Description

Niels Provos Systrace 1.6f and earlier on the x86_64 Linux platform allows local users to bypass intended access restrictions by making a 32-bit syscall with a syscall number that corresponds to a policy-compliant 64-bit syscall, related to race conditions that occur in monitoring 64-bit processes.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Chris Evans · clocallinux_x86-64

https://www.exploit-db.com/exploits/32751

View Code ZIP pw:eip

References (5)

[Exploit] http://scary.beasts.org/security/CESA-2009-001.html

[Various Sources] http://scarybeastsecurity.blogspot.com/2009/01/bypassing-syscall-filtering.html

[Various Sources] http://www.citi.umich.edu/u/provos/systrace/

[Exploit] http://www.securityfocus.com/bid/33417

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/500377/100/0/threaded

Scores

EPSS 0.0010

EPSS Percentile 26.9%

Details

CWE

CWE-264

Status published

Products (11)

niels_provos/systrace 1.1

niels_provos/systrace 1.2

niels_provos/systrace 1.3

niels_provos/systrace 1.4

niels_provos/systrace 1.5

niels_provos/systrace 1.6

niels_provos/systrace 1.6a

niels_provos/systrace 1.6b

niels_provos/systrace 1.6c

niels_provos/systrace 1.6d

... and 1 more

Published Jan 29, 2009

Tracked Since Feb 18, 2026