CVE-2009-0343 - Vulnerability Details - OpenCVE

Niels Provos Systrace 1.6f and earlier on the x86_64 Linux platform allows local users to bypass intended access restrictions by making a 32-bit syscall with a syscall number that corresponds to a policy-compliant 64-bit syscall, related to race conditions that occur in monitoring 64-bit processes.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel
Niels Provos	Systrace

Configuration 1 [-]

AND

OR	cpe:2.3:a:niels_provos:systrace::::::::
	cpe:2.3:a:niels_provos:systrace:1.1:::::::*
	cpe:2.3:a:niels_provos:systrace:1.2:::::::*
	cpe:2.3:a:niels_provos:systrace:1.3:::::::*
	cpe:2.3:a:niels_provos:systrace:1.4:::::::*
	cpe:2.3:a:niels_provos:systrace:1.5:::::::*
	cpe:2.3:a:niels_provos:systrace:1.6:::::::*
	cpe:2.3:a:niels_provos:systrace:1.6a:::::::*
	cpe:2.3:a:niels_provos:systrace:1.6b:::::::*
	cpe:2.3:a:niels_provos:systrace:1.6c:::::::*
	cpe:2.3:a:niels_provos:systrace:1.6d:::::::*

cpe:2.3:o:linux:linux_kernel:_nil_:_nil_:x86_64:*:*:*:*:*

No data.

References

Link	Providers
http://scary.beasts.org/security/CESA-2009-001.html
http://scarybeastsecurity.blogspot.com/2009/01/bypassing-syscall-filtering.html
http://www.citi.umich.edu/u/provos/systrace/
http://www.securityfocus.com/archive/1/500377/100/0/threaded
http://www.securityfocus.com/bid/33417

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-01-29T19:00:00

Updated: 2024-08-07T04:31:25.803Z

Reserved: 2009-01-29T00:00:00

Link: CVE-2009-0343

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2009-01-29T19:30:00.313

Modified: 2025-04-09T00:30:58.490

Link: CVE-2009-0343

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-01-23T00:00:00", "descriptions": [{"lang": "en", "value": "Niels Provos Systrace 1.6f and earlier on the x86_64 Linux platform allows local users to bypass intended access restrictions by making a 32-bit syscall with a syscall number that corresponds to a policy-compliant 64-bit syscall, related to race conditions that occur in monitoring 64-bit processes."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.citi.umich.edu/u/provos/systrace/"}, {"name": "20090123 Problems with syscall filtering technologies on Linux", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/500377/100/0/threaded"}, {"tags": ["x_refsource_MISC"], "url": "http://scary.beasts.org/security/CESA-2009-001.html"}, {"tags": ["x_refsource_MISC"], "url": "http://scarybeastsecurity.blogspot.com/2009/01/bypassing-syscall-filtering.html"}, {"name": "33417", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/33417"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-0343", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Niels Provos Systrace 1.6f and earlier on the x86_64 Linux platform allows local users to bypass intended access restrictions by making a 32-bit syscall with a syscall number that corresponds to a policy-compliant 64-bit syscall, related to race conditions that occur in monitoring 64-bit processes."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.citi.umich.edu/u/provos/systrace/", "refsource": "MISC", "url": "http://www.citi.umich.edu/u/provos/systrace/"}, {"name": "20090123 Problems with syscall filtering technologies on Linux", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/500377/100/0/threaded"}, {"name": "http://scary.beasts.org/security/CESA-2009-001.html", "refsource": "MISC", "url": "http://scary.beasts.org/security/CESA-2009-001.html"}, {"name": "http://scarybeastsecurity.blogspot.com/2009/01/bypassing-syscall-filtering.html", "refsource": "MISC", "url": "http://scarybeastsecurity.blogspot.com/2009/01/bypassing-syscall-filtering.html"}, {"name": "33417", "refsource": "BID", "url": "http://www.securityfocus.com/bid/33417"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T04:31:25.803Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.citi.umich.edu/u/provos/systrace/"}, {"name": "20090123 Problems with syscall filtering technologies on Linux", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/500377/100/0/threaded"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://scary.beasts.org/security/CESA-2009-001.html"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://scarybeastsecurity.blogspot.com/2009/01/bypassing-syscall-filtering.html"}, {"name": "33417", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/33417"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-0343", "datePublished": "2009-01-29T19:00:00", "dateReserved": "2009-01-29T00:00:00", "dateUpdated": "2024-08-07T04:31:25.803Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:niels_provos:systrace:*:*:*:*:*:*:*:*", "matchCriteriaId": "8C778AF1-B380-4456-8C6B-BDBFD7C31860", "versionEndIncluding": "1.6e", "vulnerable": true}, {"criteria": "cpe:2.3:a:niels_provos:systrace:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "38A786ED-B9C9-41EE-99E6-30BFA0DD984A", "vulnerable": true}, {"criteria": "cpe:2.3:a:niels_provos:systrace:1.2:*:*:*:*:*:*:*", "matchCriteriaId": "56D872DA-238E-4DA5-8187-4FEE1A63AC08", "vulnerable": true}, {"criteria": "cpe:2.3:a:niels_provos:systrace:1.3:*:*:*:*:*:*:*", "matchCriteriaId": "66D4199A-72A3-4EBE-919D-4366520E7848", "vulnerable": true}, {"criteria": "cpe:2.3:a:niels_provos:systrace:1.4:*:*:*:*:*:*:*", "matchCriteriaId": "DCE73152-5620-44A2-B09B-66CDBBAD1F41", "vulnerable": true}, {"criteria": "cpe:2.3:a:niels_provos:systrace:1.5:*:*:*:*:*:*:*", "matchCriteriaId": "B210A03B-A13E-4F48-B5DA-D8D4EA3A2C69", "vulnerable": true}, {"criteria": "cpe:2.3:a:niels_provos:systrace:1.6:*:*:*:*:*:*:*", "matchCriteriaId": "DDF7BA51-FD3D-4FFF-B5AC-DB2CE6EDF5A1", "vulnerable": true}, {"criteria": "cpe:2.3:a:niels_provos:systrace:1.6a:*:*:*:*:*:*:*", "matchCriteriaId": "F5300D33-C8AF-4389-8309-B375C36FC794", "vulnerable": true}, {"criteria": "cpe:2.3:a:niels_provos:systrace:1.6b:*:*:*:*:*:*:*", "matchCriteriaId": "F316742F-6281-4749-AAA3-338B64042714", "vulnerable": true}, {"criteria": "cpe:2.3:a:niels_provos:systrace:1.6c:*:*:*:*:*:*:*", "matchCriteriaId": "6DBB4B24-0570-47F4-ABF6-73C83BCD710F", "vulnerable": true}, {"criteria": "cpe:2.3:a:niels_provos:systrace:1.6d:*:*:*:*:*:*:*", "matchCriteriaId": "A484409A-8DD4-4CDE-A179-CAFDCB20AF3E", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:_nil_:_nil_:x86_64:*:*:*:*:*", "matchCriteriaId": "FA8AA941-3B59-458D-8C3F-EBB79B754F8C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Niels Provos Systrace 1.6f and earlier on the x86_64 Linux platform allows local users to bypass intended access restrictions by making a 32-bit syscall with a syscall number that corresponds to a policy-compliant 64-bit syscall, related to race conditions that occur in monitoring 64-bit processes."}, {"lang": "es", "value": "Niels Provos Systrace v1.6f y anteriores en las plataformas Linux x86_64 permite a usuarios locales evitar las restricciones de acceso previstas, mediante una syscal de 32 bit, con un n\u00famero correspondiente a una llamada de 64 bit. Relacionada con las condiciones de carrera en la monitorizaci\u00f3n de procesos de 64 bit."}], "id": "CVE-2009-0343", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-01-29T19:30:00.313", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://scary.beasts.org/security/CESA-2009-001.html"}, {"source": "cve@mitre.org", "url": "http://scarybeastsecurity.blogspot.com/2009/01/bypassing-syscall-filtering.html"}, {"source": "cve@mitre.org", "url": "http://www.citi.umich.edu/u/provos/systrace/"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/500377/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/33417"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://scary.beasts.org/security/CESA-2009-001.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://scarybeastsecurity.blogspot.com/2009/01/bypassing-syscall-filtering.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.citi.umich.edu/u/provos/systrace/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/500377/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/33417"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}