CVE-2005-2019

Name of the Vulnerable Software and Affected Versions FreeBSD version 5.4

Description The issue is related to the ipfw component in FreeBSD, specifically when running on Symmetric Multi-Processor (SMP) or Uni Processor (UP) systems with the PREEMPTION kernel option enabled. It does not properly lock certain resources during table lookups, which can lead to corrupted cache results when multiple lookups occur concurrently. This can allow remote attackers to bypass intended access restrictions.

Recommendations For FreeBSD version 5.4, consider disabling the PREEMPTION kernel option as a temporary workaround to minimize the risk of exploitation. Restrict access to the ipfw component to minimize the risk of bypassing intended access restrictions.