VULHUB ™

BSD is a freely available implementation of the UNIX Operating System, distributed and maintained by various project groups, and based off the original Berkeley Software Distribution. A problem with the fts routines in the system libc makes it possible for a user to take advantage of a race condition in file system the user controls. A program using the fts functions may be tricked into jumping to other directories on the system when executing in space controlled by another user. This could allow the execution of programs with the privileges of the UID executing the process, potentially leading to elevated privileges of another user, or the removal of files owned the user of the executing process, potentially leading to a denial of service.

BSD is a freely available implementation of the UNIX Operating System, distributed and maintained by various project groups, and based off the original Berkeley Software Distribution. A problem with the fts routines in the system libc makes it possible for a user to take advantage of a race condition in file system the user controls. A program using the fts functions may be tricked into jumping to other directories on the system when executing in space controlled by another user. This could allow the execution of programs with the privileges of the UID executing the process, potentially leading to elevated privileges of another user, or the removal of files owned the user of the executing process, potentially leading to a denial of service.