CVE-2006-5824

Name of the Vulnerable Software and Affected Versions: FreeBSD version 6.1

Description: The issue is related to an integer overflow in the ffs rdextattr function, which can be triggered by a local user via a crafted UFS filesystem. This can cause a denial of service, resulting in a kernel panic, and potentially trigger a heap-based buffer overflow. It is noted that only root may mount a filesystem, which may limit the impact of this issue.

Recommendations: For FreeBSD version 6.1, consider restricting access to mounting filesystems to minimize the risk of exploitation, as only root users can mount a filesystem, which may limit the impact of this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.