| Vulnerability Name: | CVE-2000-0461 (CCN-4560) |
| Assigned: | 2000-05-23 |
| Published: | 2000-05-23 |
| Updated: | 2008-09-10 |
| Summary: | The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call.
|
| CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)| Exploitability Metrics: | Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None | | Scope: | Scope (S): Unchanged
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Low |
|
| CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)| Exploitability Metrics: | Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None | | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial |
2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)| Exploitability Metrics: | Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial |
|
| Vulnerability Type: | CWE-Other
|
| Vulnerability Consequences: | Denial of Service |
| References: | Source: CCN
Type: FreeBSD Security Advisory FreeBSD-SA-00:19
local users can prevent all processes from exiting
Source: FREEBSD
Type: UNKNOWN
FreeBSD-SA-00:19
Source: CCN
Type: NetBSD Security Advisory 2000-004
SysV semaphore denial-of-service
Source: NETBSD
Type: UNKNOWN
NetBSD-SA2000-004
Source: CCN
Type: OpenBSD 2.6 release errata & patch list
024: SECURITY FIX: May 26, 2000
Source: MITRE
Type: CNA
CVE-2000-0461
Source: CCN
Type: CIAC Information Bulletin K-046
386-BSD Based Operating Systems - IPCS Vulnerability
Source: CCN
Type: OpenBSD Security Advisory, May 26, 2000
024: SECURITY FIX: May 26, 2000
Source: OPENBSD
Type: UNKNOWN
20000526
Source: CCN
Type: OSVDB ID: 1364
Multiple BSD Semaphore IPC DoS
Source: BID
Type: UNKNOWN
1270
Source: CCN
Type: BID-1270
Multiple Vendor BSD Semaphore IPC Denial Of Service Vulnerability
Source: XF
Type: UNKNOWN
bsd-semaphore-dos(4560)
|
| Vulnerable Configuration: | Configuration 1:
cpe:/o:freebsd:freebsd:1.1.5.1:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.0:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.0.5:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.0:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.5:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.6:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.6.1:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.7.1:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.2:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.3:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.4:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.5:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.6:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.8:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:3.0:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:3.1:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:3.2:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:3.3:-:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:3.4:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:4.0:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:4.0:alpha:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:5.0:-:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:5.0:alpha:*:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.1:*:alpha:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.1:*:arm32:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.1:*:sparc:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.2:*:alpha:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.2:*:arm32:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.2:*:sparc:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.2:*:x86:*:*:*:*:*
Configuration CCN 1:
cpe:/o:freebsd:freebsd:*:*:*:*:*:*:*:*OR cpe:/o:netbsd:netbsd:*:*:*:*:*:*:*:*OR cpe:/o:openbsd:openbsd:2.6:*:*:*:*:*:*:*
 Denotes that component is vulnerable |
| BACK |