FreeBSD 5.x to 5.4 on AMD64 does not properly initialize the IO permission bitmap used to allow user access to certain hardware, which allows local users to bypass intended access restrictions to cause a denial of service, obtain sensitive information, and possibly gain privileges.
References
Link | Resource |
---|---|
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:03.amd64.asc | Broken Link |
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:03.amd64.asc | Broken Link |
Configurations
Configuration 1 (hide)
AND |
|
History
20 Nov 2024, 23:56
Type | Values Removed | Values Added |
---|---|---|
References | () ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:03.amd64.asc - Broken Link |
08 Feb 2024, 23:47
Type | Values Removed | Values Added |
---|---|---|
References | (FREEBSD) ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:03.amd64.asc - Broken Link | |
First Time |
Amd
Amd amd64 |
|
CVSS |
v2 : v3 : |
v2 : 7.2
v3 : 7.8 |
CPE | cpe:2.3:o:freebsd:freebsd:5.2.1:*:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:5.1:*:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:5.3:*:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:5.2:*:*:*:*:*:*:* cpe:2.3:o:freebsd:freebsd:5.4:*:*:*:*:*:*:* |
cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:* cpe:2.3:h:amd:amd64:-:*:*:*:*:*:*:* |
CWE | CWE-909 |
Information
Published : 2005-05-02 04:00
Updated : 2024-11-20 23:56
NVD link : CVE-2005-1036
Mitre link : CVE-2005-1036
CVE.ORG link : CVE-2005-1036
JSON object : View
Products Affected
amd
- amd64
freebsd
- freebsd
CWE
CWE-909
Missing Initialization of Resource