CVE-2004-0114
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
03/03/2004
Last modified:
03/04/2025
Description
The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and OpenBSD 2.6 and earlier, does not properly decrement a shared memory segment's reference count when the vm_map_find function fails, which could allow local users to gain read or write access to a portion of kernel memory and gain privileges.
Impact
Base Score 2.0
4.60
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:* | 5.2 (including) | |
| cpe:2.3:o:netbsd:netbsd:*:*:*:*:*:*:*:* | 1.3 (including) | |
| cpe:2.3:o:openbsd:openbsd:*:*:*:*:*:*:*:* | 2.6 (including) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:02.shmat.asc
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-004.txt.asc
- http://marc.info/?l=bugtraq&m=107608375207601&w=2
- http://www.openbsd.org/errata33.html#sysvshm
- http://www.osvdb.org/3836
- http://www.pine.nl/press/pine-cert-20040201.txt
- http://www.securityfocus.com/bid/9586
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15061
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:02.shmat.asc
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-004.txt.asc
- http://marc.info/?l=bugtraq&m=107608375207601&w=2
- http://www.openbsd.org/errata33.html#sysvshm
- http://www.osvdb.org/3836
- http://www.pine.nl/press/pine-cert-20040201.txt
- http://www.securityfocus.com/bid/9586
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15061