CVE-2004-0114 — MEDIUM (4.6)

Q: How severe is CVE-2004-0114?

CVE-2004-0114 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2004-0114?

Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd, Netbsd Netbsd, Openbsd Openbsd.

Vulnerability Description

The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and OpenBSD 2.6 and earlier, does not properly decrement a shared memory segment's reference count when the vm_map_find function fails, which could allow local users to gain read or write access to a portion of kernel memory and gain privileges.

CVSS Score

4.6

MEDIUM

AV:L/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Freebsd	Freebsd	<= 5.2
Netbsd	Netbsd	<= 1.3
Openbsd	Openbsd	<= 2.6

References

FAQ

What is CVE-2004-0114?

CVE-2004-0114 is a vulnerability with a CVSS score of 4.6 (MEDIUM). The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and OpenBSD 2.6 and earlier, does not properly decrement a shared memory segment's re...

How severe is CVE-2004-0114?

CVE-2004-0114 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2004-0114?

Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd, Netbsd Netbsd, Openbsd Openbsd.