Lucene search
HistorySep 05, 2008 - 4:08 p.m.
CVE-2008-3890
cve-2008-3890
kernel
freebsd
privilege escalation
gpf
security vulnerability
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
The kernel in FreeBSD 6.3 through 7.0 on amd64 platforms can make an extra swapgs call after a General Protection Fault (GPF), which allows local users to gain privileges by triggering a GPF during the kernelâs return from (1) an interrupt, (2) a trap, or (3) a system call.
Affected configurations
Node
freebsdfreebsdMatch6.3
ORfreebsdfreebsdMatch7.0
amdamd64
| CPE | Name | Operator | Version |
|---|---|---|---|
| freebsd:freebsd | freebsd | eq | 6.3 |
| freebsd:freebsd | freebsd | eq | 7.0 |
Related
freebsd
freebsd
FreeBSD -- amd64 swapgs local privilege escalation
2008-09-03 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-08:07.amd64
2008-09-03 00:00:00
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-08:07.amd64.asc)
2008-09-04 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-08:07.amd64.asc)
2008-09-04 00:00:00
seebug
seebug
FreeBSD/amd64 'swapgs'ćŹĺ°çšććĺćźć´
2008-09-10 00:00:00
prion
prion
Code injection
2008-09-05 16:08:00
cvelist
cvelist
CVE-2008-3890
2008-09-05 16:00:00
nvd
nvd
CVE-2008-3890
2008-09-05 16:08:00
securityvulns
securityvulns
VMware Emulation Flaw x64 Guest Privilege Escalation (2/2)
2008-11-10 00:00:00
FreeBSD multiple security vulnerabilities
2009-07-03 00:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2008-3890