6.5 Medium
AI Score
Confidence
Low
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
0.0004 Low
EPSS
Percentile
8.9%
Integer signedness error in the i386_set_ldt call in FreeBSD 5.5, and possibly earlier versions down to 5.2, allows local users to cause a denial of service (crash) via unspecified arguments that use negative signed integers to cause the bzero function to be called with a large length parameter, a different vulnerability than CVE-2006-4172.
CPE | Name | Operator | Version |
---|---|---|---|
freebsd:freebsd | freebsd | eq | 5.2.1 |
freebsd:freebsd | freebsd | eq | 5.4 |
freebsd:freebsd | freebsd | eq | 5.3 |
freebsd:freebsd | freebsd | eq | 5.2 |
freebsd:freebsd | freebsd | le | 5.5 |