CVE-2006-4516

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2006-4516
Integer signedness error in FreeBSD 6.0-RELEASE allows local users to cause a denial of service (memory corruption and kernel panic) via a PT_LWPINFO ptrace command with a large negative data value that satisfies a signed maximum value check but is used in an unsigned copyout function call.

4.9 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 3.9 / Impact : 6.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References
Link Resource
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=419 Patch Vendor Advisory
http://secunia.com/advisories/22367
http://www.securityfocus.com/bid/20440
https://exchange.xforce.ibmcloud.com/vulnerabilities/29476
Configurations

Configuration 1 (hide)

cpe:2.3:o:freebsd:freebsd:6.0:release:*:*:*:*:*:*
History

No history.

Information

Published : 2006-10-12 00:07

Updated : 2024-02-28 11:01

NVD link : CVE-2006-4516

Mitre link : CVE-2006-4516

CVE.ORG link : CVE-2006-4516

JSON object : View

Products Affected

freebsd

  • freebsd
CWE
NVD-CWE-Other

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024