Back to search
CVE-2006-5679
Published: Nov 3, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Integer overflow in the ffs_mountfs function in FreeBSD 6.1 allows local users to cause a denial of service (panic) and possibly execute arbitrary code via a crafted UFS filesystem that causes invalid or large size parameters to be provided to the kmem_alloc function. NOTE: a third party states that this issue does not cross privilege boundaries in FreeBSD because only root may mount a filesystem.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
TA07-072A
third-party-advisory
x_refsource_CERT
[freebsd-security] 20070114 MOAB advisories
mailing-list
x_refsource_MLIST
22736
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2007-03-13
vendor-advisory
x_refsource_APPLE
http://docs.info.apple.com/article.html?artnum=305214
x_refsource_CONFIRM
1017751
vdb-entry
x_refsource_SECTRACK
20918
vdb-entry
x_refsource_BID
ADV-2007-0930
vdb-entry
x_refsource_VUPEN
http://projects.info-pull.com/mokb/MOKB-03-11-2006.html
x_refsource_MISC
VU#552136
third-party-advisory
x_refsource_CERT-VN
24479
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now