Lucene search
HistorySep 01, 2004 - 4:00 a.m.
CVE-2002-1490
netbsd
1.4
1.6 beta
local denial of service
kernel panic
vulnerability
tiocsctty
integer overflow
nvd
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
6.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
NetBSD 1.4 through 1.6 beta allows local users to cause a denial of service (kernel panic) via a series of calls to the TIOCSCTTY ioctl, which causes an integer overflow in a structure counter and sets the counter to zero, which frees memory that is still in use by other processes.
Affected configurations
Node
netbsdnetbsdMatch1.4
ORnetbsdnetbsdMatch1.4alpha
ORnetbsdnetbsdMatch1.4arm32
ORnetbsdnetbsdMatch1.4sparc
ORnetbsdnetbsdMatch1.4x86
ORnetbsdnetbsdMatch1.4.1
ORnetbsdnetbsdMatch1.4.1alpha
ORnetbsdnetbsdMatch1.4.1arm32
ORnetbsdnetbsdMatch1.4.1sh3
ORnetbsdnetbsdMatch1.4.1sparc
ORnetbsdnetbsdMatch1.4.1x86
ORnetbsdnetbsdMatch1.4.2
ORnetbsdnetbsdMatch1.4.2alpha
ORnetbsdnetbsdMatch1.4.2arm32
ORnetbsdnetbsdMatch1.4.2sparc
ORnetbsdnetbsdMatch1.4.2x86
ORnetbsdnetbsdMatch1.4.3
ORnetbsdnetbsdMatch1.5
ORnetbsdnetbsdMatch1.5sh3
ORnetbsdnetbsdMatch1.5x86
ORnetbsdnetbsdMatch1.5.1
ORnetbsdnetbsdMatch1.5.2
ORnetbsdnetbsdMatch1.5.3
ORnetbsdnetbsdMatch1.6beta
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
6.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2002-1490