CVE-2001-0268

Currently unrated

Key Information:

Vendor: OpenBSD
Status: OpenBSD; Netbsd
Vendor: CVE Published:; 3 May 2001

Summary

The i386_set_ldt system call in NetBSD 1.5 and earlier, and OpenBSD 2.8 and earlier, when the USER_LDT kernel option is enabled, does not validate a call gate target, which allows local users to gain root privileges by creating a segment call gate in the Local Descriptor Table (LDT) with a target that specifies an arbitrary kernel address.

References

http://archives.neohapsis.com/archives/linux/caldera/2001...

vendor-advisoryx_refsource_CALDERA

http://archives.neohapsis.com/archives/netbsd/2001-q1/009...

vendor-advisoryx_refsource_NETBSD

http://www.kb.cert.org/vuls/id/358960

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability published
May 3, 2001
Vulnerability Reserved
Apr 4, 2001