Vulnerability Name:
CVE-2005-1406 (CCN-20435)
Assigned:
2005-05-06
Published:
2005-05-06
Updated:
2011-03-08
Summary:
The kernel in FreeBSD 4.x to 4.11 and 5.x to 5.4 does not properly clear certain fixed-length buffers when copying variable-length data for use by applications, which could allow those applications to read previously used sensitive memory.
CVSS v3 Severity:
5.9 Medium
(CCN CVSS v3.1 Vector:
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
)
Exploitability Metrics:
Attack Vector (AV):
Local
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope:
Scope (S):
Unchanged
Impact Metrics:
Confidentiality (C):
Low
Integrity (I):
Low
Availibility (A):
Low
CVSS v2 Severity:
4.6 Medium
(CVSS v2 Vector:
AV:L/AC:L/Au:N/C:P/I:P/A:P
)
Exploitability Metrics:
Access Vector (AV):
Local
Access Complexity (AC):
Low
Authentication (Au):
None
Impact Metrics:
Confidentiality (C):
Partial
Integrity (I):
Partial
Availibility (A):
Partial
4.6 Medium
(CCN CVSS v2 Vector:
AV:L/AC:L/Au:N/C:P/I:P/A:P
)
Exploitability Metrics:
Access Vector (AV):
Local
Access Complexity (AC):
Low
Athentication (Au):
None
Impact Metrics:
Confidentiality (C):
Partial
Integrity (I):
Partial
Availibility (A):
Partial
Vulnerability Type:
CWE-Other
Vulnerability Consequences:
Obtain Information
References:
Source: CCN
Type: FreeBSD Security Advisory FreeBSD-SA-05:08.kmem
Local kernel memory disclosure
Source: FREEBSD
Type: Patch, Vendor Advisory
FreeBSD-SA-05:08
Source: MITRE
Type: CNA
CVE-2005-1406
Source: APPLE
Type: UNKNOWN
APPLE-SA-2005-10-31
Source: CCN
Type: SA17368
Mac OS X Update Fixes Multiple Vulnerabilities
Source: SECUNIA
Type: UNKNOWN
17368
Source: CCN
Type: OSVDB ID: 16091
FreeBSD Kernel Arbitrary Memory Disclosure
Source: BID
Type: UNKNOWN
13526
Source: CCN
Type: BID-13526
FreeBSD Multiple Local Kernel Memory Disclosure Vulnerabilities
Source: BID
Type: UNKNOWN
15252
Source: CCN
Type: BID-15252
Apple Mac OS X Security Update 2005-10-31 Multiple Local Vulnerabilities
Source: VUPEN
Type: UNKNOWN
ADV-2005-2256
Source: XF
Type: UNKNOWN
freebsd-kernel-memory-disclosure(20435)
Vulnerable Configuration:
Configuration 1
:
cpe:/o:freebsd:freebsd:4.1:*:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.2:*:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.3:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.4:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.5:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.6:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.7:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.8:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.9:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.10:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.11:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:5.1:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:5.2:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:5.3:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:5.4:-:*:*:*:*:*:*
Configuration CCN 1
:
cpe:/o:freebsd:freebsd:4.1:*:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.2:*:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.3:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.4:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.5:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.6:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.7:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.8:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:5.1:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:5.2:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.9:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.10:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:5.3:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:5.4:-:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:4.11:-:*:*:*:*:*:*
Denotes that component is vulnerable
BACK
freebsd
freebsd 4.1
freebsd
freebsd 4.2
freebsd
freebsd 4.3
freebsd
freebsd 4.4
freebsd
freebsd 4.5
freebsd
freebsd 4.6
freebsd
freebsd 4.7
freebsd
freebsd 4.8
freebsd
freebsd 4.9
freebsd
freebsd 4.10
freebsd
freebsd 4.11
freebsd
freebsd 5.1
freebsd
freebsd 5.2
freebsd
freebsd 5.3
freebsd
freebsd 5.4
freebsd
freebsd 4.1
freebsd
freebsd 4.2
freebsd
freebsd 4.3 -
freebsd
freebsd 4.4 -
freebsd
freebsd 4.5 -
freebsd
freebsd 4.6 -
freebsd
freebsd 4.7 -
freebsd
freebsd 4.8 -
freebsd
freebsd 5.1 -
freebsd
freebsd 5.2 -
freebsd
freebsd 4.9 -
freebsd
freebsd 4.10 -
freebsd
freebsd 5.3 -
freebsd
freebsd 5.4 -
freebsd
freebsd 4.11 -
Denotes that component is vulnerable