Lucene search
HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-0708
freebsd
sendfile
system call
vulnerability
cve-2005-0708
nvd
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.1 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.7%
The sendfile system call in FreeBSD 4.8 through 4.11 and 5 through 5.4 can transfer portions of kernel memory if a file is truncated while it is being sent, which could allow remote attackers to obtain sensitive information.
Affected configurations
Node
dragonflybsddragonflybsdMatch1.0
ORdragonflybsddragonflybsdMatch1.1
ORfreebsdfreebsdMatch4.0
ORfreebsdfreebsdMatch4.0alpha
ORfreebsdfreebsdMatch4.0releng
ORfreebsdfreebsdMatch4.1
ORfreebsdfreebsdMatch4.1.1
ORfreebsdfreebsdMatch4.1.1release
ORfreebsdfreebsdMatch4.1.1stable
ORfreebsdfreebsdMatch4.2
ORfreebsdfreebsdMatch4.2stable
ORfreebsdfreebsdMatch4.3
ORfreebsdfreebsdMatch4.3release
ORfreebsdfreebsdMatch4.3release_p38
ORfreebsdfreebsdMatch4.3releng
ORfreebsdfreebsdMatch4.3stable
ORfreebsdfreebsdMatch4.4
ORfreebsdfreebsdMatch4.4release_p42
ORfreebsdfreebsdMatch4.4releng
ORfreebsdfreebsdMatch4.4stable
ORfreebsdfreebsdMatch4.5
ORfreebsdfreebsdMatch4.5release
ORfreebsdfreebsdMatch4.5release_p32
ORfreebsdfreebsdMatch4.5releng
ORfreebsdfreebsdMatch4.5stable
ORfreebsdfreebsdMatch4.6
ORfreebsdfreebsdMatch4.6release
ORfreebsdfreebsdMatch4.6release_p20
ORfreebsdfreebsdMatch4.6releng
ORfreebsdfreebsdMatch4.6stable
ORfreebsdfreebsdMatch4.6.2
ORfreebsdfreebsdMatch4.7
ORfreebsdfreebsdMatch4.7release
ORfreebsdfreebsdMatch4.7release_p17
ORfreebsdfreebsdMatch4.7releng
ORfreebsdfreebsdMatch4.7stable
ORfreebsdfreebsdMatch4.8
ORfreebsdfreebsdMatch4.8pre-release
ORfreebsdfreebsdMatch4.8release_p6
ORfreebsdfreebsdMatch4.8releng
ORfreebsdfreebsdMatch4.9
ORfreebsdfreebsdMatch4.9pre-release
ORfreebsdfreebsdMatch4.9releng
ORfreebsdfreebsdMatch4.10
ORfreebsdfreebsdMatch4.10release
ORfreebsdfreebsdMatch4.10releng
ORfreebsdfreebsdMatch4.11stable
ORfreebsdfreebsdMatch5.0
ORfreebsdfreebsdMatch5.0alpha
ORfreebsdfreebsdMatch5.0release_p14
ORfreebsdfreebsdMatch5.0releng
ORfreebsdfreebsdMatch5.1
ORfreebsdfreebsdMatch5.1alpha
ORfreebsdfreebsdMatch5.1release
ORfreebsdfreebsdMatch5.1release_p5
ORfreebsdfreebsdMatch5.1releng
ORfreebsdfreebsdMatch5.2
ORfreebsdfreebsdMatch5.2.1release
ORfreebsdfreebsdMatch5.2.1releng
ORfreebsdfreebsdMatch5.3
ORfreebsdfreebsdMatch5.3release
ORfreebsdfreebsdMatch5.3stable
ORfreebsdfreebsdMatch5.4pre-release
Related
nvd
nvd
CVE-2005-0708
2005-05-02 04:00:00
f5
f5
cert
cert
sendfile() system call may leak sections of kernel memory
2005-04-20 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-05:02.sendfile
2005-04-04 00:00:00
cvelist
cvelist
CVE-2005-0708
2005-04-05 04:00:00
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-05:02.sendfile.asc)
2008-09-04 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-05:02.sendfile.asc)
2008-09-04 00:00:00
nessus
nessus
FreeBSD : SA-05:02.sendfile
2005-04-06 00:00:00
ubuntucve
ubuntucve
CVE-2005-0708
2005-05-02 00:00:00
securityvulns
securityvulns
FreeBSD Security Advisory FreeBSD-SA-05:02.sendfile
2005-04-06 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.1 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.7%
Related for CVE-2005-0708