Users that have limited privileges are allowed to take full control of underlying systems. This is due to a security bug that was discovered by a security worker within the FreeBSD operating system.
For those to gain full root privileges, while having local access to a vulnerable system, the bug in FreeBSD's queue notification interface makes it trivial.
This was claimed in 'The Register' by an independent security consultant who goes by the name of Przemyslaw Frasunek. This security consultant is from the country of Poland.
Thinking about making a comment on this blog post? Great! But please remember that this space is for just that, comments about this blog post. It is not a place to post random thoughts about other stuff. We found that most of the "comments" posted here are not comments at all and should have really been posted in our forum. So:
If you are just planning to spam... go away as all the comments are premoderated
Have something to actually say about this blog post, please submit your comment here:
Leave a comment:
We welcome your comments on this post in the FreeBSD Blog. That means a comment on this post, not something about some other topic.
Name: (required)
Email: (required, not published)
Comment:
Note: Your comment will be immediately submitted and you will have no opportunity to review to edit it.
It is recommend that you register on FreeBSD Blog and login so you can include full html (ie: links). We don't have a chapta because we think we're smarter than the spambots.
