Vulnerability Description
The syscons CONS_SCRSHOT ioctl in FreeBSD 5.x allows local users to read arbitrary kernel memory via (1) negative coordinates or (2) large coordinates.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Freebsd | 5.0 |
References
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:15.syscons.ascPatch
- http://secunia.com/advisories/12722Patch
- http://www.kb.cert.org/vuls/id/969078Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/11321Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17584
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:15.syscons.ascPatch
- http://secunia.com/advisories/12722Patch
- http://www.kb.cert.org/vuls/id/969078Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/11321Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17584
FAQ
What is CVE-2004-0919?
CVE-2004-0919 is a vulnerability with a CVSS score of 4.6 (MEDIUM). The syscons CONS_SCRSHOT ioctl in FreeBSD 5.x allows local users to read arbitrary kernel memory via (1) negative coordinates or (2) large coordinates.
How severe is CVE-2004-0919?
CVE-2004-0919 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0919?
Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd.