CVE-2004-0099
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
03/03/2004
Last modified:
03/04/2025
Description
mksnap_ffs in FreeBSD 5.1 and 5.2 only sets the snapshot flag when creating a snapshot for a file system, which causes default values for other flags to be used, possibly disabling security-critical settings and allowing a local user to bypass intended access restrictions.
Impact
Base Score 2.0
4.60
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:freebsd:freebsd:5.1:release:*:*:*:*:*:* | ||
| cpe:2.3:o:freebsd:freebsd:5.2.1:release:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:01.mksnap_ffs.asc
- http://www.osvdb.org/3790
- http://www.securityfocus.com/bid/9533
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15005
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:01.mksnap_ffs.asc
- http://www.osvdb.org/3790
- http://www.securityfocus.com/bid/9533
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15005