Our staff have been both technical services providers and managers of IT departments, this enables us to help you to understand your options through independent advice. | FreeBSD access() Function Race Condition |
| Thursday, 20 October 1994 | |
|
FreeBSD contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a malicious user executes a setuid program that utilizes the standard C library access() function. As access() will only verify that a user can access a given pathname, its use creates a race condition. This flaw may lead to a loss of integrity. Read more... |