Bypassing Access Restrictions via Hardlink in FreeBSD Nullfs Implementation

CVE-2013-5710 · LOW Severity

AV:L/AC:H/AU:N/C:P/I:P/A:P

The nullfs implementation in sys/fs/nullfs/null_vnops.c in the kernel in FreeBSD 8.3 through 9.2 allows local users with certain permissions to bypass access restrictions via a hardlink in a nullfs instance to a file in a different instance.

Learn more about our User Device Pen Test.