The vulnerability of the sys_amd64 IRET Handler component in the FreeBSD operating system allows a hacker to trigger a service failure or enhance their privileges.

🗓️ 23 Nov 2017 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

FreeBSD IRET Handler vulnerability enables privilege escalation or kernel failure.

Reporter	Title	Published	Views	Family All 13
FreeBSD	FreeBSD -- Local privilege escalation in IRET handler	25 Aug 201500:00	–	freebsd
CNVD	FreeBSD Kernel sys_amd64 IRET Processor Denial of Service Vulnerability	29 Aug 201500:00	–	cnvd
CVE	CVE-2015-5675	10 Oct 201716:00	–	cve
Cvelist	CVE-2015-5675	10 Oct 201716:00	–	cvelist
Debian CVE	CVE-2015-5675	10 Oct 201716:00	–	debiancve
EUVD	EUVD-2015-5625	7 Oct 202500:30	–	euvd
FreeBSD Advisory	FreeBSD-SA-15:21.amd64	25 Aug 201500:00	–	freebsd_advisory
Tenable Nessus	FreeBSD : FreeBSD -- Local privilege escalation in IRET handler (0dfa5dde-600a-11e6-a6c3-14dae9d210b8)	12 Aug 201600:00	–	nessus
Tenable Nessus	pfSense < 2.2.5 Multiple Vulnerabilities (SA-15_08)	31 Jan 201800:00	–	nessus
NVD	CVE-2015-5675	10 Oct 201716:29	–	nvd

Vulners

Node

freebsd freebsdMatch10.1

OR

freebsd freebsdMatch9.3

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/133335/FreeBSD-Security-Advisory-IRET-Handler-Privilege-Escalation.html
securityfocus	www.securityfocus.com/archive/1/archive/1/536321/100/0/threaded
securityfocus	www.securityfocus.com/bid/76485
securitytracker	www.securitytracker.com/id/1033376
freebsd	www.freebsd.org/security/advisories/FreeBSD-SA-15:21.amd64.asc
web	www.web.nvd.nist.gov/view/vuln/detail
securityfocus	www.securityfocus.com/bid/20150825

13 Jun 2024 00:00Current

7.1High risk

Vulners AI Score7.1

CVSS 27.2

CVSS 37.8

EPSS0.00051

FreeBSD IRET Handler Privilege escalation Kernel failure Access control deficiency