CVE-2005-4779

Loading...

General

Score:3.6/10.0
Severity:Low
Category:N/A

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:None

Exploitability Metrics

Access Vector:Local
Access Complexity:Low
Authentication:None

Published on 31/12/05 - Updated on 05/09/08

Description

verifiedexecioctl in verified_exec.c in NetBSD 2.0.2 calls NDINIT with UIO_USERSPACE rather than UID_SYSSPACE, which removes the functionality of the verified exec kernel subsystem and might allow local users to execute Trojan horse programs.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2005-4779

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
netbsdnetbsd

Share this vulnerability with:

Twitter Facebook LinkedIn Mail