Unrated severityNVD Advisory· Published Jul 10, 2001· Updated Apr 16, 2026

CVE-2001-1180

Description

FreeBSD 4.3 does not properly clear shared signal handlers when executing a process, which allows local users to gain privileges by calling rfork with a shared signal handler, having the child process execute a setuid program, and sending a signal to the child.

Affected products

FreeBSD/FreeBSD4 versions
cpe:2.3:o:freebsd:freebsd:4.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:freebsd:freebsd:4.0:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:4.1:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:4.2:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:4.3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/943633nvdPatchThird Party AdvisoryUS Government Resource
archives.neohapsis.com/archives/bugtraq/2001-07/0179.htmlnvdExploitPatchVendor Advisory
www.securityfocus.com/bid/3007nvdExploitPatchVendor Advisory
ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:42.signal.v1.1.ascnvd
ciac.llnl.gov/ciac/bulletins/l-111.shtmlnvd
www.osvdb.org/1897nvd
exchange.xforce.ibmcloud.com/vulnerabilities/6829nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000