PT-2004-1305 · Freebsd+2 · Freebsd+2

Thomas Walpuski

Published

2004-03-03

Updated

2017-10-10

CVE-2004-0114

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions FreeBSD versions prior to 5.3 NetBSD versions prior to 1.4 OpenBSD versions prior to 2.7

Description The issue is related to the shmat system call in the System V Shared Memory interface. It does not properly decrement a shared memory segment's reference count when the vm map find function fails. This could allow local users to gain read or write access to a portion of kernel memory and potentially gain privileges.

Recommendations For FreeBSD versions prior to 5.3, update to version 5.3 or later. For NetBSD versions prior to 1.4, update to version 1.4 or later. For OpenBSD versions prior to 2.7, update to version 2.7 or later.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-0114

Affected Products

Freebsd

Netbsd

Openbsd

PT-2004-1305 · Freebsd+2 · Freebsd+2

CVE-2004-0114

Related Identifiers

Affected Products

References · 10