CVE-2004-0919

{"id": "CVE-2004-0919", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2004-12-31T05:00:00.000", "references": [{"url": "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:15.syscons.asc", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/12722", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.kb.cert.org/vuls/id/969078", "tags": ["Third Party Advisory", "US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/11321", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17584", "source": "cve@mitre.org"}, {"url": "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:15.syscons.asc", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/12722", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.kb.cert.org/vuls/id/969078", "tags": ["Third Party Advisory", "US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/11321", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17584", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The syscons CONS_SCRSHOT ioctl in FreeBSD 5.x allows local users to read arbitrary kernel memory via (1) negative coordinates or (2) large coordinates."}], "lastModified": "2024-11-20T23:49:40.910", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "61EBA52A-2D8B-4FB5-866E-AE67CE1842E7"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:alpha:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B13D898-C1B6-44B9-8432-7DDB8A380E9E"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:release_p14:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51A612F6-E4EB-4E34-8F55-79E16C74758E"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:releng:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C19B266-8FE7-49ED-8678-2D522257491D"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EE93350-92E6-4F5C-A14C-9993CFFDBCD4"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:alpha:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15C4D826-A419-45F5-B91C-1445DB480916"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:release:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D9F2B04-A1F2-4788-A53D-C8274A758DDA"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:release_p5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FEC7B38F-C6FB-4213-AE18-2D039A4D8E7A"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:releng:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A5309ED-D84F-4F52-9864-5B0FEEEE5022"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DD7C441E-444B-4DF5-8491-86805C70FB99"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.2.1:release:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9CCE8F3-84EE-4571-8AAA-BF2D132E9BD4"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.2.1:releng:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E4BC012-ADE4-468F-9A25-261CD8055694"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}