NetBSD Audiosetinfo IOCTL Local Denial of Service Vulnerability
BID:17999
Info
NetBSD Audiosetinfo IOCTL Local Denial of Service Vulnerability
| Bugtraq ID: | 17999 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2006-2205 |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 19 2006 12:00AM |
| Updated: | May 17 2006 07:24PM |
| Credit: | The vendor credits Christian Biere with the discovery of this issue. |
| Vulnerable: |
Navision Financials Server 3.0 |
| Not Vulnerable: | |
Discussion
NetBSD Audiosetinfo IOCTL Local Denial of Service Vulnerability
NetBSD is prone to a local denial-of-service vulnerability.
Specifically, the issue presents itself if a user changes the sample rate of an audio device during playback.
A successful attack may trigger a crash in the kernel.
NetBSD is prone to a local denial-of-service vulnerability.
Specifically, the issue presents itself if a user changes the sample rate of an audio device during playback.
A successful attack may trigger a crash in the kernel.
Exploit / POC
NetBSD Audiosetinfo IOCTL Local Denial of Service Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
NetBSD Audiosetinfo IOCTL Local Denial of Service Vulnerability
Solution:
NetBSD has released an advisory to address this issue. Please see the referenced advisory for details on updating affected kernels.
Solution:
NetBSD has released an advisory to address this issue. Please see the referenced advisory for details on updating affected kernels.
References
NetBSD Audiosetinfo IOCTL Local Denial of Service Vulnerability
References:
References:
- NetBSD Homepage (NetBSD)