CVE Vulnerabilities

CVE-2006-5218

Published: Oct 10, 2006 | Modified: Jul 20, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Integer overflow in the systrace_preprepl function (STRIOCREPLACE) in systrace in OpenBSD 3.9 and NetBSD 3 allows local users to cause a denial of service (crash), gain privileges, or read arbitrary kernel memory via large numeric arguments to the systrace ioctl.

Affected Software

Name Vendor Start Version End Version
Netbsd Netbsd 3.0 3.0
Openbsd Openbsd 3.8 3.8
Openbsd Openbsd 3.9 3.9

References