BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id.
2001-07-02T04:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 7.2 (HIGH)
AV:L/AC:L/Au:N/C:C/I:C/A:C
3.9
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | timecop | bubblemon | 1.0 | Yes |
| Application | timecop | bubblemon | 1.0pl1 | Yes |
| Application | timecop | bubblemon | 1.0pl2 | Yes |
| Application | timecop | bubblemon | 1.0pl3 | Yes |
| Application | timecop | bubblemon | 1.0pl4 | Yes |
| Application | timecop | bubblemon | 1.0pl6 | Yes |
| Application | timecop | bubblemon | 1.0pl7 | Yes |
| Application | timecop | bubblemon | 1.0pl8 | Yes |
| Application | timecop | bubblemon | 1.0pl9 | Yes |
| Application | timecop | bubblemon | 1.1 | Yes |
| Application | timecop | bubblemon | 1.1test1 | Yes |
| Application | timecop | bubblemon | 1.1test2 | Yes |
| Application | timecop | bubblemon | 1.1test3 | Yes |
| Application | timecop | bubblemon | 1.1test4 | Yes |
| Application | timecop | bubblemon | 1.1test5 | Yes |
| Application | timecop | bubblemon | 1.1test6 | Yes |
| Application | timecop | bubblemon | 1.1test7 | Yes |
| Application | timecop | bubblemon | 1.2 | Yes |
| Application | timecop | bubblemon | 1.2test1 | Yes |
| Application | timecop | bubblemon | 1.3 | Yes |
| Application | timecop | bubblemon | 1.21 | Yes |
| Application | timecop | bubblemon | 1.21test1 | Yes |
| Application | timecop | bubblemon | 1.22 | Yes |
| Application | timecop | bubblemon | 1.23 | Yes |
| Application | timecop | bubblemon | 1.31 | Yes |
| Operating System | freebsd | freebsd | 6.2 | Yes |