CVE-2007-4305

NONE EPSS 54.0%
Published Aug 13, 200718y ago · Modified Jun 16, 20262w ago
Find Similar
Published Aug 13, 2007 18y ago
Last Modified Jun 16, 2026 2w ago

Description

Multiple race conditions in the (1) Sudo monitor mode and (2) Sysjail policies in Systrace on NetBSD and OpenBSD allow local users to defeat system call interposition, and consequently bypass access control policy and auditing.

Threat Intelligence

EPSS Exploit Probability
54.0% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Affected Products 47

VendorProductVersionRange
netbsdnetbsd*any
openbsdopenbsd*any
sysjailsysjail*any
systracesystrace*any
todd_millersudo1.5.6any
todd_millersudo1.5.7any
todd_millersudo1.5.8any
todd_millersudo1.5.9any
todd_millersudo1.6any
todd_millersudo1.6.1any
todd_millersudo1.6.2any
todd_millersudo1.6.3any
todd_millersudo1.6.3_p1any
todd_millersudo1.6.3_p2any
todd_millersudo1.6.3_p3any
todd_millersudo1.6.3_p4any
todd_millersudo1.6.3_p5any
todd_millersudo1.6.3_p6any
todd_millersudo1.6.3_p7any
todd_millersudo1.6.3p1any
todd_millersudo1.6.3p2any
todd_millersudo1.6.3p3any
todd_millersudo1.6.3p4any
todd_millersudo1.6.3p5any
todd_millersudo1.6.3p6any
todd_millersudo1.6.3p7any
todd_millersudo1.6.4any
todd_millersudo1.6.4_p1any
todd_millersudo1.6.4_p2any
todd_millersudo1.6.4p1any
todd_millersudo1.6.4p2any
todd_millersudo1.6.5any
todd_millersudo1.6.5_p1any
todd_millersudo1.6.5_p2any
todd_millersudo1.6.5p1any
todd_millersudo1.6.5p2any
todd_millersudo1.6.6any
todd_millersudo1.6.7any
todd_millersudo1.6.7_p5any
todd_millersudo1.6.8any
todd_millersudo1.6.8_p1any
todd_millersudo1.6.8_p2any
todd_millersudo1.6.8_p5any
todd_millersudo1.6.8_p7any
todd_millersudo1.6.8_p8any
todd_millersudo1.6.8_p9any
todd_millersudo1.6.8_p12any

References 3

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.