[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256148

 
 

909

 
 

199106

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2002-1125Date: (C)2002-09-24   (M)2023-12-22


FreeBSD port programs that use libkvm for FreeBSD 4.6.2-RELEASE and earlier, including (1) asmon, (2) ascpu, (3) bubblemon, (4) wmmon, and (5) wmnet2, leave open file descriptors for /dev/mem and /dev/kmem, which allows local users to read kernel memory.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.1
Exploit Score: 3.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE
  
Reference:
http://marc.info/?l=bugtraq&m=103228135413310&w=2
BID-5714
BID-5716
BID-5718
BID-5719
BID-5720
FreeBSD-SA-02:39
bsd-libkvm-descriptor-leak(10109)

CPE    5
cpe:/o:freebsd:freebsd:4.2
cpe:/o:freebsd:freebsd:4.3
cpe:/o:freebsd:freebsd:4.4
cpe:/o:freebsd:freebsd:4.5
...

© SecPod Technologies