CVE-2002-0572
published 2002-07-03CVE-2002-0572: FreeBSD 4.5 and earlier, and possibly other BSD-based operating systems, allows local users to write to or read from restricted files by closing the file…
PriorityP420high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
1.55%
72.0th percentile
FreeBSD 4.5 and earlier, and possibly other BSD-based operating systems, allows local users to write to or read from restricted files by closing the file descriptors 0 (standard input), 1 (standard output), or 2 (standard error), which may then be reused by a called setuid process that intended to perform I/O on normal files.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| freebsd | freebsd | — | — |
| freebsd | freebsd | — | — |
| hp | hp-ux | — | — |
| ibm | aix | — | — |
| openbsd | openbsd | — | — |
| openbsd | openbsd | — | — |
| openbsd | openbsd | — | — |
| openbsd | openbsd | — | — |
| sun | solaris | — | — |
| sun | solaris | — | — |
| sun | solaris | — | — |
| sun | solaris | — | — |
| sun | solaris | — | — |
| sun | sunos | — | — |
| sun | sunos | — | — |
| sun | sunos | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-ch5f-274q-4xg7: FreeBSD 4
ghsa_unreviewed·2022-05-03
CVE-2002-0572 [HIGH] GHSA-ch5f-274q-4xg7: FreeBSD 4
FreeBSD 4.5 and earlier, and possibly other BSD-based operating systems, allows local users to write to or read from restricted files by closing the file descriptors 0 (standard input), 1 (standard output), or 2 (standard error), which may then be reused by a called setuid process that intended to perform I/O on normal files.
GHSA
GHSA-pqq7-42hf-m9r8: Sun Solaris 9 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing
ghsa_unreviewed·2022-05-01·CVSS 7.2
CVE-2007-0393 [HIGH] GHSA-pqq7-42hf-m9r8: Sun Solaris 9 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing
Sun Solaris 9 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572.
GHSA
GHSA-xm7m-3vrw-5x97: IBM AIX 5
ghsa_unreviewed·2022-05-01·CVSS 7.2
CVE-2007-0392 [HIGH] GHSA-xm7m-3vrw-5x97: IBM AIX 5
IBM AIX 5.3 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572.
GHSA
GHSA-jcmg-xqwv-44cm: HP HP-UX B11
ghsa_unreviewed·2022-05-01·CVSS 7.2
CVE-2007-0394 [HIGH] GHSA-jcmg-xqwv-44cm: HP HP-UX B11
HP HP-UX B11.11 does not properly verify the status of file descriptors before setuid execution, which allows local users to gain privileges by closing file descriptor 0, 1, or 2 and then invoking a setuid program, a variant of CVE-2002-0572.
No detection rules found.
No writeups or analysis indexed.
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:23.stdio.aschttp://archives.neohapsis.com/archives/vulnwatch/2002-q2/0033.htmlhttp://online.securityfocus.com/archive/1/268970http://online.securityfocus.com/archive/1/269102http://www.ciac.org/ciac/bulletins/m-072.shtmlhttp://www.iss.net/security_center/static/8920.phphttp://www.kb.cert.org/vuls/id/809347http://www.osvdb.org/6095http://www.securityfocus.com/bid/4568ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:23.stdio.aschttp://archives.neohapsis.com/archives/vulnwatch/2002-q2/0033.htmlhttp://online.securityfocus.com/archive/1/268970http://online.securityfocus.com/archive/1/269102http://www.ciac.org/ciac/bulletins/m-072.shtmlhttp://www.iss.net/security_center/static/8920.phphttp://www.kb.cert.org/vuls/id/809347http://www.osvdb.org/6095http://www.securityfocus.com/bid/4568
2002-07-03
Published