CVE-2011-4062

2011-10-1801:55:01

CWE-119

[email protected]

web.nvd.nist.gov

freebsd

kernel

buffer overflow

dos

privilege escalation

unix socket

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Buffer overflow in the kernel in FreeBSD 7.3 through 9.0-RC1 allows local users to cause a denial of service (panic) or possibly gain privileges via a bind system call with a long pathname for a UNIX socket.

Affected configurations

NVD

Node

freebsdfreebsdMatch7.3

freebsdfreebsdMatch7.4

freebsdfreebsdMatch8.1

freebsdfreebsdMatch8.2

freebsdfreebsdMatch9.0beta1

freebsdfreebsdMatch9.0beta2

freebsdfreebsdMatch9.0beta3

CPENameOperatorVersion
freebsd:freebsdfreebsdeq7.3
freebsd:freebsdfreebsdeq7.4
freebsd:freebsdfreebsdeq8.1
freebsd:freebsdfreebsdeq8.2
freebsd:freebsdfreebsdeq9.0