3.6

CVE-2003-1234

Integer overflow in the f_count counter in FreeBSD before 4.2 through 5.0 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via multiple calls to (1) fpathconf and (2) lseek, which do not properly decrement f_count through a call to fdrop.

Data is provided by the National Vulnerability Database (NVD)
FreebsdFreebsd Version1.1.5.1
FreebsdFreebsd Version2.1.0
FreebsdFreebsd Version2.1.5
FreebsdFreebsd Version2.1.6
FreebsdFreebsd Version2.1.6.1
FreebsdFreebsd Version2.1.7
FreebsdFreebsd Version2.1.7.1
FreebsdFreebsd Version2.2
FreebsdFreebsd Version2.2 Updatecurrent
FreebsdFreebsd Version2.2.1
FreebsdFreebsd Version2.2.2
FreebsdFreebsd Version2.2.3
FreebsdFreebsd Version2.2.4
FreebsdFreebsd Version2.2.5
FreebsdFreebsd Version2.2.6
FreebsdFreebsd Version2.2.7
FreebsdFreebsd Version2.2.8
FreebsdFreebsd Version3.1
FreebsdFreebsd Version3.2
FreebsdFreebsd Version3.3
FreebsdFreebsd Version3.4
FreebsdFreebsd Version3.5
FreebsdFreebsd Version3.5.1 Updaterelease
FreebsdFreebsd Version4.2
FreebsdFreebsd Version4.3
FreebsdFreebsd Version4.3 Updaterelease
FreebsdFreebsd Version4.4
FreebsdFreebsd Version4.5
FreebsdFreebsd Version4.5 Updaterelease
FreebsdFreebsd Version4.6
FreebsdFreebsd Version4.6 Updaterelease
FreebsdFreebsd Version4.7
FreebsdFreebsd Version4.7 Updaterelease
FreebsdFreebsd Version4.9 Updatereleng
FreebsdFreebsd Version4.10
FreebsdFreebsd Version4.10 Updaterelease
FreebsdFreebsd Version4.10 Updaterelease_p8
FreebsdFreebsd Version4.10 Updatereleng
FreebsdFreebsd Version4.11
FreebsdFreebsd Version4.11 Updaterelease_p3
FreebsdFreebsd Version4.11 Updatereleng
FreebsdFreebsd Version4.11 Updatestable
FreebsdFreebsd Version5.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.07% 0.177
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 3.6 3.9 4.9
AV:L/AC:L/Au:N/C:N/I:P/A:P