Vulnerability Description
Race condition in the UFS and EXT2FS file systems in FreeBSD 4.2 and earlier, and possibly other operating systems, makes deleted data available to user processes before it is zeroed out, which allows a local user to access otherwise restricted information.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Freebsd | <= 4.2 |
References
- http://archives.neohapsis.com/archives/freebsd/2001-03/0403.htmlPatchVendor Advisory
- http://www.osvdb.org/5682
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6268
- http://archives.neohapsis.com/archives/freebsd/2001-03/0403.htmlPatchVendor Advisory
- http://www.osvdb.org/5682
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6268
FAQ
What is CVE-2001-0371?
CVE-2001-0371 is a vulnerability with a CVSS score of 6.2 (MEDIUM). Race condition in the UFS and EXT2FS file systems in FreeBSD 4.2 and earlier, and possibly other operating systems, makes deleted data available to user processes before it is zeroed out, which allows...
How severe is CVE-2001-0371?
CVE-2001-0371 has been rated MEDIUM with a CVSS base score of 6.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0371?
Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd.