CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
25.3%
The device file system (devfs) in FreeBSD 5.x does not properly check parameters of the node type when creating a device node, which makes hidden devices available to attackers, who can then bypass restrictions on a jailed process.
Vendor | Product | Version | CPE |
---|---|---|---|
freebsd | freebsd | 5.0 | cpe:2.3:o:freebsd:freebsd:5.0:*:*:*:*:*:*:* |
freebsd | freebsd | 5.0 | cpe:2.3:o:freebsd:freebsd:5.0:alpha:*:*:*:*:*:* |
freebsd | freebsd | 5.0 | cpe:2.3:o:freebsd:freebsd:5.0:release_p14:*:*:*:*:*:* |
freebsd | freebsd | 5.0 | cpe:2.3:o:freebsd:freebsd:5.0:releng:*:*:*:*:*:* |
freebsd | freebsd | 5.1 | cpe:2.3:o:freebsd:freebsd:5.1:*:*:*:*:*:*:* |
freebsd | freebsd | 5.1 | cpe:2.3:o:freebsd:freebsd:5.1:alpha:*:*:*:*:*:* |
freebsd | freebsd | 5.1 | cpe:2.3:o:freebsd:freebsd:5.1:release:*:*:*:*:*:* |
freebsd | freebsd | 5.1 | cpe:2.3:o:freebsd:freebsd:5.1:release_p5:*:*:*:*:*:* |
freebsd | freebsd | 5.1 | cpe:2.3:o:freebsd:freebsd:5.1:releng:*:*:*:*:*:* |
freebsd | freebsd | 5.2 | cpe:2.3:o:freebsd:freebsd:5.2:*:*:*:*:*:*:* |