2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
26.8%
Integer signedness error in the fw_ioctl (FW_IOCTL) function in the
FireWire (IEEE-1394) drivers (dev/firewire/fwdev.c) in various BSD kernels,
including DragonFlyBSD, FreeBSD 5.5, MidnightBSD 0.1-CURRENT before
20061115, NetBSD-current before 20061116, NetBSD-4 before 20061203, and
TrustedBSD, allows local users to read arbitrary memory contents via
certain negative values of crom_buf->len in an FW_GCROM command. NOTE: this
issue has been labeled as an integer overflow, but it is more like an
integer signedness error.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 7.04 | noarch | kfreebsd-5 | < 5.4-21 | UNKNOWN |
ubuntu | 7.10 | noarch | kfreebsd-5 | < 5.4-21 | UNKNOWN |
ubuntu | 8.04 | noarch | kfreebsd-5 | < 5.4-21 | UNKNOWN |
ubuntu | 8.10 | noarch | kfreebsd-5 | < 5.4-21 | UNKNOWN |