PT-2005-3147 · Freebsd · Freebsd

Published

2005-07-26

Updated

2017-07-11

CVE-2005-2218

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 5.x

Description: The issue concerns the device file system (devfs) in FreeBSD, which fails to properly check parameters of the node type when creating a device node. This allows hidden devices to be accessed by attackers, enabling them to bypass restrictions on a jailed process.

Recommendations: For FreeBSD versions 5.x, update to a version that properly checks node type parameters during device node creation to prevent unauthorized access to hidden devices.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-2218

Affected Products

Freebsd

PT-2005-3147 · Freebsd · Freebsd

CVE-2005-2218

Related Identifiers

Affected Products

References · 7