CVE-2001-0268
First published: Thu May 03 2001(Updated: )
The i386_set_ldt system call in NetBSD 1.5 and earlier, and OpenBSD 2.8 and earlier, when the USER_LDT kernel option is enabled, does not validate a call gate target, which allows local users to gain root privileges by creating a segment call gate in the Local Descriptor Table (LDT) with a target that specifies an arbitrary kernel address.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Openbsd Openbsd | <=2.8 | |
| NetBSD NetBSD | <=1.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://archives.neohapsis.com/archives/netbsd/2001-q1/0093.html
- http://archives.neohapsis.com/archives/linux/caldera/2001-q4/0014.html
- http://archives.neohapsis.com/archives/bugtraq/2001-02/0353.html
- http://www.openbsd.org/errata.html#userldt
- http://www.kb.cert.org/vuls/id/358960
- http://www.securityfocus.com/bid/2739
- http://www.osvdb.org/6141
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6222
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/author
- agent/remedy
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/openbsd
- canonical/openbsd openbsd
- version/openbsd openbsd/2.8
- vendor/netbsd
- canonical/netbsd netbsd
- version/netbsd netbsd/1.5