Summary: | The Race condition is a privilege escalation vulnerability that manipulates the time between imposing a security control and using services in a UNIX like system. This vulnerability is a result of interferences caused by multiple sequential threads running in the system and sharing the same resources. Race condition could occur due to sequence condition imposed by un-trusted processes or locking failure condition imposed by secure programs such as operating systems. The race condition is a common vulnerability in UNIX-like systems, where directories such as /tmp and /var/tmp are shared between threads. A study of Race condition vulnerability and its impact in UNIX like systems are presented in this paper. Also various types of Race condition attack and there detection, avoidance and prevention techniques are also discussed in this paper.
|