PT-2005-1216 · Intel+2 · Intel Pentium+2

Colin Percival

Published

2005-03-05

Updated

2018-10-16

CVE-2005-0109

CVSS v2.0

4.7

Medium

Vector

AV:L/AC:M/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions FreeBSD (affected versions not specified)

Description The issue allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain sensitive information such as cryptographic keys. This is achieved via a timing attack on memory cache misses, exploiting Hyper-Threading technology used in operating systems run on Intel Pentium and other processors.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-0109

RHSA-2005:476

RHSA-2005:800

RHSA-2005_476

RHSA-2005_800

Affected Products

Freebsd

Intel Pentium

Red Hat

PT-2005-1216 · Intel+2 · Intel Pentium+2

CVE-2005-0109

Related Identifiers

Affected Products

References · 25