Executive Summary

Informations
NameCVE-2004-0114First vendor Publication2004-03-03
VendorCveLast vendor Modification2017-10-09

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score4.6Attack RangeLocal
Cvss Impact Score6.4Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Security Protection

ImpactsProvides unauthorized access : Allows partial confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service.

Detail

The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and OpenBSD 2.6 and earlier, does not properly decrement a shared memory segment's reference count when the vm_map_find function fails, which could allow local users to gain read or write access to a portion of kernel memory and gain privileges.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0114

CPE : Common Platform Enumeration

TypeDescriptionCount
Os298
Os9
Os10

OpenVAS Exploits

DateDescription
2008-09-04Name : FreeBSD Security Advisory (FreeBSD-SA-04:02.shmat.asc)
File : nvt/freebsdsa_shmat.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
3836Multiple BSD shmat() Privilege Escalation

Nessus® Vulnerability Scanner

DateDescription
2004-07-06Name : The remote device is missing a vendor-supplied security patch
File : freebsd_shmat.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/9586
BUGTRAQ http://marc.info/?l=bugtraq&m=107608375207601&w=2
CONFIRM http://www.openbsd.org/errata33.html#sysvshm
FREEBSD ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:02.shmat.asc
MISC http://www.pine.nl/press/pine-cert-20040201.txt
NETBSD ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-004.txt.asc
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/15061

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
DateInformations
2019-03-23 12:00:47
  • Multiple Updates
2019-03-20 12:01:26
  • Multiple Updates
2019-03-19 12:01:40
  • Multiple Updates
2017-10-10 09:23:26
  • Multiple Updates
2017-03-30 12:00:52
  • Multiple Updates
2016-10-18 12:01:17
  • Multiple Updates
2016-06-28 15:04:56
  • Multiple Updates
2016-04-26 12:46:54
  • Multiple Updates
2014-02-17 10:27:10
  • Multiple Updates
2013-05-11 11:39:53
  • Multiple Updates