CVE-2007-4303

Name of the Vulnerable Software and Affected Versions CerbNG for FreeBSD version 4.8

Description The issue involves multiple race conditions found in certain rules and argument copying during VM protection. This could allow local users to defeat system call interposition and possibly gain privileges or bypass auditing. An example of exploitation includes modifying command lines in log-exec.cb.

Recommendations For CerbNG for FreeBSD version 4.8, consider disabling the affected rules and argument copying during VM protection as a temporary workaround until a patch is available. Restrict access to sensitive areas of the system to minimize the risk of exploitation.