Lucene search
K

4 matches found

Prion
Prion
added 2007/11/30 1:46 a.m.15 views

Design/Logic Flaw

The "internal state tracking" code for the random and urandom devices in FreeBSD 5.5, 6.1 through 6.3, and 7.0 beta 4 allows local users to obtain portions of previously-accessed random values, which could be leveraged to bypass protection mechanisms that rely on secrecy of those values...

2.1CVSS7AI score0.00328EPSS
Exploits1References7Affected Software1
NVD
NVD
added 2006/09/26 2:7 a.m.24 views

CVE-2006-4178

Integer signedness error in the i386setldt call in FreeBSD 5.5, and possibly earlier versions down to 5.2, allows local users to cause a denial of service crash via unspecified arguments that use negative signed integers to cause the bzero function to be called with a large length parameter, a...

4.9CVSS6.2AI score0.00769EPSS
Exploits0References5
Cvelist
Cvelist
added 2006/09/26 1:43 a.m.21 views

CVE-2006-4172

Integer overflow vulnerability in the i386setldt call in FreeBSD 5.5, and possibly earlier versions down to 5.2, allows local users to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2006-4178...

7.5AI score0.00407EPSS
Exploits0References8
CVE
CVE
added 2006/09/26 1:43 a.m.49 views

CVE-2006-4178

CVE-2006-4178 is a local denial-of-service vulnerability in FreeBSD’s i386_set_ldt implementation. The issue arises from signedness in the i386_ldt handling: user-controlled start and num are added into a signed i, and if i becomes negative, bzero is invoked with a very large length, allowing a k...

4.9CVSS6.4AI score0.00769EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder