Vulnerability Name: | CVE-2000-0461 (CCN-4560) |
Assigned: | 2000-05-23 |
Published: | 2000-05-23 |
Updated: | 2008-09-10 |
Summary: | The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call.
|
CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)Exploitability Metrics: | Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None | Scope: | Scope (S): Unchanged
| Impact Metrics: | Confidentiality (C): None Integrity (I): None Availibility (A): Low |
|
CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)Exploitability Metrics: | Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None | Impact Metrics: | Confidentiality (C): None Integrity (I): None Availibility (A): Partial | 2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)Exploitability Metrics: | Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
| Impact Metrics: | Confidentiality (C): None Integrity (I): None Availibility (A): Partial |
|
Vulnerability Type: | CWE-Other
|
Vulnerability Consequences: | Denial of Service |
References: | Source: CCN Type: FreeBSD Security Advisory FreeBSD-SA-00:19 local users can prevent all processes from exiting
Source: FREEBSD Type: UNKNOWN FreeBSD-SA-00:19
Source: CCN Type: NetBSD Security Advisory 2000-004 SysV semaphore denial-of-service
Source: NETBSD Type: UNKNOWN NetBSD-SA2000-004
Source: CCN Type: OpenBSD 2.6 release errata & patch list 024: SECURITY FIX: May 26, 2000
Source: MITRE Type: CNA CVE-2000-0461
Source: CCN Type: CIAC Information Bulletin K-046 386-BSD Based Operating Systems - IPCS Vulnerability
Source: CCN Type: OpenBSD Security Advisory, May 26, 2000 024: SECURITY FIX: May 26, 2000
Source: OPENBSD Type: UNKNOWN 20000526
Source: CCN Type: OSVDB ID: 1364 Multiple BSD Semaphore IPC DoS
Source: BID Type: UNKNOWN 1270
Source: CCN Type: BID-1270 Multiple Vendor BSD Semaphore IPC Denial Of Service Vulnerability
Source: XF Type: UNKNOWN bsd-semaphore-dos(4560)
|
Vulnerable Configuration: | Configuration 1: cpe:/o:freebsd:freebsd:1.1.5.1:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.0:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.0.5:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.0:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.5:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.6:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.6.1:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.7.1:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.2:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.3:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.4:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.5:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.6:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.8:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:3.0:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:3.1:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:3.2:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:3.3:-:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:3.4:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:4.0:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:4.0:alpha:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:5.0:-:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:5.0:alpha:*:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.1:*:alpha:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.1:*:arm32:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.1:*:sparc:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.2:*:alpha:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.2:*:arm32:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.2:*:sparc:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.4.2:*:x86:*:*:*:*:* Configuration CCN 1: cpe:/o:freebsd:freebsd:*:*:*:*:*:*:*:*OR cpe:/o:netbsd:netbsd:*:*:*:*:*:*:*:*OR cpe:/o:openbsd:openbsd:2.6:*:*:*:*:*:*:*
Denotes that component is vulnerable |
BACK |