Lucene search
MitreCVE-2009-3527HistoryOct 06, 2009 - 10:30 p.m.
CVE-2009-3527
2009-10-0622:30:00
CWE-362
mitre
web.nvd.nist.gov
26
cve-2009-3527
race condition
pipe
ipc
close function
freebsd 6.3
freebsd 6.4
denial of service
gain privileges
kqueues
use after free
null pointer dereference
memory corruption
nvd
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.4
Confidence
High
EPSS
0
Percentile
10.3%
Race condition in the Pipe (IPC) close function in FreeBSD 6.3 and 6.4 allows local users to cause a denial of service (crash) or gain privileges via vectors related to kqueues, which triggers a use after free, leading to a NULL pointer dereference or memory corruption.
Affected configurations
Node
freebsdfreebsdMatch6.3
ORfreebsdfreebsdMatch6.4
Related
exploitdb
exploitdb
prion
prion
Race condition
2009-10-06 22:30:00
cvelist
cvelist
CVE-2009-3527
2009-10-06 22:00:00
nvd
nvd
CVE-2009-3527
2009-10-06 22:30:00
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-09:13.pipe.asc)
2009-10-06 00:00:00
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.4
Confidence
High
EPSS
0
Percentile
10.3%
Related for CVE-2009-3527