Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0371

Overview

Vulnerability Score 6.2 6.2
CVE Id CVE-2001-0371
Last Modified 05 Sep 2008 04:23:56
Published 18 Jun 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2001-0371

Summary

Race condition in the UFS and EXT2FS file systems in FreeBSD 4.2 and earlier, and possibly other operating systems, makes deleted data available to user processes before it is zeroed out, which allows a local user to access otherwise restricted information.

Vulnerable Systems

Operating System

  • Freebsd 4.2


References

XF - ufs-ext2fs-data-disclosure(6268)

FREEBSD - FreeBSD-SA-01:30

OSVDB - 5682


Last Updated: 27 May 2016 10:36:14