CVE-2002-0766

Name of the Vulnerable Software and Affected Versions: OpenBSD versions 2.9 through 3.1

Description: The issue allows local users to cause a denial of service and gain root privileges by exploiting a flaw in how the kernel handles file descriptors. Specifically, filling the kernel's file descriptor table and closing file descriptors 0, 1, or 2 before executing a privileged process can lead to this issue, as OpenBSD fails to properly handle the situation when it cannot open an alternate descriptor.

Recommendations: For OpenBSD versions 2.9 through 3.1, consider restricting access to privileged processes until a fix is available, and avoid closing critical file descriptors 0, 1, or 2 to minimize the risk of exploitation.