Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0114

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2004-0114
Last Modified 05 Sep 2008 04:37:34
Published 03 Mar 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0114

Summary

The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and OpenBSD 2.6 and earlier, does not properly decrement a shared memory segment's reference count when the vm_map_find function fails, which could allow local users to gain read or write access to a portion of kernel memory and gain privileges.

Vulnerable Systems

Operating System

  • Freebsd 5.2

  • Netbsd 1.3

  • Openbsd 2.6


References

XF - bsd-shmat-gain-privileges(15061)

BID - 9586

FREEBSD - FreeBSD-SA-04:02

MISC - http://www.pine.nl/press/pine-cert-20040201.txt

BUGTRAQ - 20040205 [PINE-CERT-20040201] reference count overflow in shmat()

OSVDB - 3836

CONFIRM - http://www.openbsd.org/errata33.html#sysvshm

NETBSD - NetBSD-SA2004-004


Last Updated: 27 May 2016 10:38:28