RETIRED: FreeBSD UFS Filesystem Local Integer Overflow Vulnerability
BID:20918
Info
RETIRED: FreeBSD UFS Filesystem Local Integer Overflow Vulnerability
| Bugtraq ID: | 20918 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Nov 03 2006 12:00AM |
| Updated: | Nov 21 2006 07:05PM |
| Credit: | LMH <[email protected]> discovered this issue. |
| Vulnerable: |
FreeBSD FreeBSD 6.1 -STABLE FreeBSD FreeBSD 6.1 -RELEASE-p10 FreeBSD FreeBSD 6.1 -RELEASE |
| Not Vulnerable: | |
Discussion
RETIRED: FreeBSD UFS Filesystem Local Integer Overflow Vulnerability
FreeBSD is prone to a local integer-overflow vulnerability. This issue affects the UFS filesystem handling code.
An attacker can exploit this vulnerability to trigger a denial-of-service condition and possibly to execute arbitrary code with elevated privileges, but this has not been confirmed.
FreeBSD 6.1 is vulnerable to this issue.
This BID is being retired because further analysis reveals that this issue is not a security vulnerability.
FreeBSD is prone to a local integer-overflow vulnerability. This issue affects the UFS filesystem handling code.
An attacker can exploit this vulnerability to trigger a denial-of-service condition and possibly to execute arbitrary code with elevated privileges, but this has not been confirmed.
FreeBSD 6.1 is vulnerable to this issue.
This BID is being retired because further analysis reveals that this issue is not a security vulnerability.
Exploit / POC
RETIRED: FreeBSD UFS Filesystem Local Integer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]
Solution / Fix
RETIRED: FreeBSD UFS Filesystem Local Integer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
References
RETIRED: FreeBSD UFS Filesystem Local Integer Overflow Vulnerability
References:
References: