Lucene search

[email protected]CVE-2005-0637

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0637

2005-05-0204:00:00

[email protected]

web.nvd.nist.gov

cve-2005-0637

locore.s

copy functions

openbsd

bsd

operating systems

memory manipulation

security vulnerability

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

6.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.2%

JSON

The copy functions in locore.s such as copyout in OpenBSD 3.5 and 3.6, and possibly other BSD based operating systems, may allow attackers to exceed certain address boundaries and modify kernel memory.

Affected configurations

NVD

Node

openbsdopenbsdMatch3.5

openbsdopenbsdMatch3.6

CPENameOperatorVersion
openbsd:openbsdopenbsdeq3.5
openbsd:openbsdopenbsdeq3.6

CPE	Name	Operator	Version
openbsd:openbsd	openbsd	eq	3.5
openbsd:openbsd	openbsd	eq	3.6

References

secunia.com/advisories/14432

securitytracker.com/id?1013333

www.openbsd.org/errata.html#copy

www.openbsd.org/errata35.html#locore

www.securityfocus.com/bid/12825

exchange.xforce.ibmcloud.com/vulnerabilities/19531

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

6.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.2%

JSON

Related for CVE-2005-0637

cvelist1 nvd1