| Vulnerability Name: | CVE-2002-0701 (CCN-9474) | ||||||||
| Assigned: | 2002-06-27 | ||||||||
| Published: | 2002-06-27 | ||||||||
| Updated: | 2016-10-18 | ||||||||
| Summary: | ktrace in BSD-based operating systems allows the owner of a process with special privileges to trace the process after its privileges have been lowered, which may allow the owner to obtain sensitive information that the process obtained while it was running with the extra privileges. | ||||||||
| CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
| ||||||||
| CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Gain Privileges | ||||||||
| References: | Source: CCN Type: FreeBSD Security Advisory FreeBSD-SA-02:30 Users may trace previously privileged processes Source: MITRE Type: CNA CVE-2002-0701 Source: FREEBSD Type: UNKNOWN FreeBSD-SA-02:30 Source: XF Type: UNKNOWN openbsd-ktrace-gain-privileges(9474) Source: CCN Type: OpenBSD 3.1 errata 009: SECURITY FIX: June 27, 2002 Source: OPENBSD Type: UNKNOWN 20020627 009: SECURITY FIX: June 27, 2002 Source: CCN Type: OpenBSD 3.0 errata 026: SECURITY FIX: June 27, 2002 Source: CCN Type: OSVDB ID: 5132 ktrace Elevated Privilege Trace Information Disclosure Source: BID Type: UNKNOWN 5133 Source: CCN Type: BID-5133 Multiple Vendor BSD KTrace SUID/SGID Process Tracing Vulnerability Source: XF Type: UNKNOWN openbsd-ktrace-gain-privileges(9474) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||