|
|
CVE Reference: CVE-2006-5679 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-5679 |
|
|
Description: Integer overflow in the ffs_mountfs function in FreeBSD 6.1 allows local users to cause a denial of service (panic) and possibly execute arbitrary code via a crafted UFS filesystem that causes invalid or large size parameters to be provided to the kmem_alloc function. NOTE: a third party states that this issue does not cross privilege boundaries in FreeBSD because only root may mount a filesystem. |
|
|
CVE Status: Candidate |
|
|
References: ST 1017751 SAID Secunia Advisory: SA22736 Secunia Advisory: SA24479 MLIST http://lists.freebsd.org/pipermail/freebsd-security/2007-January/004218.html MISC http://projects.info-pull.com/mokb/MOKB-03-11-2006.html CONFIRM http://docs.info.apple.com/article.html?artnum=305214 CERT-VN 552136 CERT http://www.us-cert.gov/cas/techalerts/TA07-072A.html BID 20918 APPLE http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html |
|
| Return to the previous page. |
