CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
0.4%
The db interface in libc in FreeBSD 6.3, 6.4, 7.0, 7.1, and 7.2-PRERELEASE does not properly initialize memory for Berkeley DB 1.85 database structures, which allows local users to obtain sensitive information by reading a database file.
Vendor | Product | Version | CPE |
---|---|---|---|
freebsd | freebsd | 6.3 | cpe:2.3:o:freebsd:freebsd:6.3:*:*:*:*:*:*:* |
freebsd | freebsd | 6.3 | cpe:2.3:o:freebsd:freebsd:6.3:release_p10:*:*:*:*:*:* |
freebsd | freebsd | 6.4 | cpe:2.3:o:freebsd:freebsd:6.4:*:*:*:*:*:*:* |
freebsd | freebsd | 6.4 | cpe:2.3:o:freebsd:freebsd:6.4:release_p4:*:*:*:*:*:* |
freebsd | freebsd | 6.4 | cpe:2.3:o:freebsd:freebsd:6.4:stable:*:*:*:*:*:* |
freebsd | freebsd | 7.0 | cpe:2.3:o:freebsd:freebsd:7.0:*:*:*:*:*:*:* |
freebsd | freebsd | 7.0 | cpe:2.3:o:freebsd:freebsd:7.0:release-p12:*:*:*:*:*:* |
freebsd | freebsd | 7.1 | cpe:2.3:o:freebsd:freebsd:7.1:*:*:*:*:*:*:* |
freebsd | freebsd | 7.1 | cpe:2.3:o:freebsd:freebsd:7.1:release-p5:*:*:*:*:*:* |
freebsd | freebsd | 7.2 | cpe:2.3:o:freebsd:freebsd:7.2:pre-release:*:*:*:*:*:* |