Vulnerability: Local Privilege Escalation via Open File Descriptors in FreeBSD Port Programs

CVE-2002-1125 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

FreeBSD port programs that use libkvm for FreeBSD 4.6.2-RELEASE and earlier, including (1) asmon, (2) ascpu, (3) bubblemon, (4) wmmon, and (5) wmnet2, leave open file descriptors for /dev/mem and /dev/kmem, which allows local users to read kernel memory.

Learn more about our User Device Pen Test.