PT-2003-2179 · Freebsd · Freebsd

Published

2003-12-31

Updated

2018-10-19

CVE-2003-1234

CVSS v2.0

3.6

Low

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:P

Name of the Vulnerable Software and Affected Versions FreeBSD versions prior to 5.0

Description The issue is related to an integer overflow in the f count counter, which can be triggered by local users through multiple calls to functions such as fpathconf and lseek. These functions do not properly decrement f count via a call to fdrop, potentially leading to a denial of service or possibly allowing the execution of arbitrary code.

Recommendations For versions prior to 5.0, update to version 5.0 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-1234

Affected Products

Freebsd

PT-2003-2179 · Freebsd · Freebsd

CVE-2003-1234

Related Identifiers

Affected Products

References · 10