CVE-2007-4303
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-4303
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple race conditions in (1) certain rules and (2) argument copying during VM protection, in CerbNG for FreeBSD 4.8 allow local users to defeat system call interposition and possibly gain privileges or bypass auditing, as demonstrated by modifying command lines in log-exec.cb.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
CerbNG Multiple System Call Wrappers Concurrency漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
CerbNG for FreeBSD 4.8版本的(1) 某些规则和(2)VM保护中的自变量复制中存在多个竞争条件。本地用户可以击败系统调用干涉并获得特权或绕过审计,例如通过修改log-exec.cb中的命令行。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-4303
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-4303
请登录查看更多情报信息。
Blog · 1
- Exploiting Concurrency Vulnerabilities in System Call Wrappersx_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2007-4303
Same Patch Batch · n/a · 2007-08-13 · 21 CVEs total
| CVE-2007-4313 | Php Blue Dragon 'public_includes/pub_blocks/activecontent.php'PHP远程文件包含漏洞 | |
| CVE-2007-2956 | pfstools readRadianceHeader()函数栈缓冲区溢出漏洞 | |
| CVE-2007-4301 | WebCart 管理界面多个未明跨站脚本攻击漏洞 | |
| CVE-2007-3851 | ThLinux kernel drm/i915组件本地特权提升漏洞 | |
| CVE-2007-4319 | Zyxel Zywall 2 ZyNOS固件管理界面拒绝服务漏洞 | |
| CVE-2007-4318 | ZyXEL ZyWALL 2 ZyNOS firmware管理界面跨站脚本攻击漏洞 | |
| CVE-2007-4317 | Zyxel Zywall 2 ZyNOS firmware管理界面多个跨站请求伪造漏洞 | |
| CVE-2007-4316 | Zyxel ZyNOS firmware 管理界面默认密码漏洞 | |
| CVE-2007-4315 | AMD ATI ATIDSMXX.SYS驱动本地权限提升漏洞 | |
| CVE-2007-4314 | Pixlie'pixlie.php'URL欺骗漏洞 | |
| CVE-2007-4302 | GSWTK多个系统调用包装器竞争条件漏洞 | |
| CVE-2007-4312 | Php Blue Dragon 多个输入验证漏洞 | |
| CVE-2007-4311 | Linux Kernel random.c种子重新赋值漏洞 | |
| CVE-2007-4310 | Sun Solaris finger后台程序账户泄露漏洞 | |
| CVE-2007-4309 | IBM Lotus Notes 密码泄露漏洞 | |
| CVE-2007-4308 | Linux Kernel AACRAID Driver Local 安全绕过漏洞 | |
| CVE-2007-4307 | Storesprite 多个跨站脚本攻击漏洞 | |
| CVE-2007-4306 | phpMyAdmin 多个跨站脚本攻击漏洞 | |
| CVE-2007-4305 | Systrace系统调用竞争条件漏洞 | |
| CVE-2007-4304 | FreeBSD CerbNG VM保护措施漏洞 |
IV. Related Vulnerabilities
V. Comments for CVE-2007-4303
No comments yet