CVE-2010-4210

The pfsgetextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a mutex that was not previously locked, which allows local users to cause a denial of service kernel panic, overwrite arbitrary memory locations, and possibly execute arbitrary code via vectors related to...

Design/Logic Flaw

The pfsgetextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a mutex that was not previously locked, which allows local users to cause a denial of service kernel panic, overwrite arbitrary memory locations, and possibly execute arbitrary code via vectors related to...

CVE-2010-4210

Removed by vendor...

CVE-2010-4210

The CVE-2010-4210 issue affects FreeBSD: pfs_getextattr in pseudofs unlocks a mutex that was not locked. On systems with pseudofs-mounted filesystems and NULL page mapping allowed, an attacker can overwrite kernel memory and potentially execute code in the kernel; on systems without NULL page map...

FreeBSD内核pseudofs模块本地内存覆盖漏洞

BUGTRAQ ID: 44782 CVE ID: CVE-2010-4210 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 FreeBSD的pseudofs模块中用于处理扩展属性的pfsgetextattr9函数尝试解锁之前尚未锁定的互斥体。在加载了使用 pseudofs的文件系统且允许空页面映射的系统上，攻击者可以以0覆盖内核中的任意内存位置，在某些情况下还可以在内核环境中执行任意代码。 在不允许空页面映射的系统上，攻击者可以导致FreeBSD内核忙碌。 FreeBSD FreeBSD 8.x FreeBSD FreeBSD 7.x 临时解决方...

FreeBSD Security Advisory (FreeBSD-SA-10:09.pseudofs.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-10:09.pseudofs.asc SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

FreeBSD Security Advisory FreeBSD-SA-10:09.pseudofs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-10:09.pseudofs Security Advisory The FreeBSD Project Topic: Spurious mutex unlock Category: core Module: pseudofs Announced: 2010-11-10 Credits: Przemyslaw Frasun...

FreeBSD-SA-10:09.pseudofs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-10:09.pseudofs Security Advisory The FreeBSD Project Topic: Spurious mutex unlock Category: core Module: pseudofs Announced: 2010-11-10 Credits: Przemyslaw...

FreeBSD 'pseudofs' NULL Pointer Dereference Local Privilege Escalation Vulnerability

No description provided by source. / Source: http://www.securityfocus.com/bid/43060/info 18.08.2010, babcia padlina FreeBSD 7.0 - 7.2 pseudofs null ptr dereference exploit to obtain SYSENT8SYCALLADDR, run: $ kgdb /boot/kernel/kernel kgdb print &sysent8.sycall / define SYSENT8SYCALLADDR 0xc0c4afa4...

FreeBSD 'pseudofs' NULL Pointer Dereference Local Privilege Escalation

Exploit for bsd platform in category local exploits ====================================================================== FreeBSD 'pseudofs' NULL Pointer Dereference Local Privilege Escalation ====================================================================== / Source:...

FreeBSD - 'pseudofs' Null Pointer Dereference Privilege Escalation

/ source: https://www.securityfocus.com/bid/43060/info 18.08.2010, babcia padlina FreeBSD 7.0 - 7.2 pseudofs null ptr dereference exploit to obtain SYSENT8SYCALLADDR, run: $ kgdb /boot/kernel/kernel kgdb print &sysent8.sycall / define SYSENT8SYCALLADDR 0xc0c4afa4 / FreeBSD 7.2-RELEASE / define...

FreeBSD - pseudofs Null Pointer Dereference Privilege Escalation

FreeBSD - pseudofs Null Pointer Dereference Privilege Escalation / source: https://www.securityfocus.com/bid/43060/info 18.08.2010, babcia padlina FreeBSD 7.0 - 7.2 pseudofs null ptr dereference exploit to obtain SYSENT8SYCALLADDR, run: $ kgdb /boot/kernel/kernel kgdb print &sysent8.sycall / defi...