CVE-2009-1935

Published Jun 18, 2009

Last updated 7 years ago

Overview

Description: Integer overflow in the pipe_build_write_buffer function (sys/kern/sys_pipe.c) in the direct write optimization feature in the pipe implementation in FreeBSD 7.1 through 7.2 and 6.3 through 6.4 allows local users to bypass virtual-to-physical address lookups and read sensitive information in memory pages via unspecified vectors.
Source: secteam@freebsd.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.9
Impact score: 6.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-189

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F702C46F-CA02-4FA2-B7D6-C61C2C095679"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:6.3:release_p10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A1D9D46-75E4-4742-9CF3-2B063B6B7504"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:6.3_releng:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "72C2BE9D-91E1-48E9-9326-39CF583A57E0"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:6.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4F7F02A-C845-40BF-8490-510A070000F3"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:6.4:release_p4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E08DCB9-9064-4DB7-B43A-7B415882EB50"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:6.4:stable:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "06FB0EEA-254E-4A1F-99E7-058FCD518E22"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "803EFA9F-B7CB-4511-B1C1-381170CA9A23"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:pre-release:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14D72C9B-EEB0-4605-BEA2-F77092129245"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52DBF406-9C77-4DDA-AB7D-40FAE40023D0"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:release-p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20A31C9A-A928-4C9B-BB49-0E53227746DC"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:release-p2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "99FB7443-F942-402A-9104-64677EAF014E"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:release-p5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2A31704-E99F-4DBE-ABA4-EC3E566DE6CB"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.1:stable:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9A75104-5A3E-485E-B4EC-0873C942731C"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F948527C-A01E-4315-80B6-47FACE18A34F"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:7.2:pre-release:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B573401-DC6F-4AFE-92F5-D96F785D2107"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References