Vulnerability Description
Integer overflow in the FreeBSD compatibility code (freebsd_misc.c) in NetBSD-current, NetBSD-3, NetBSD-2.0, and NetBSD-2 before 20050913; and NetBSD-1.6 before 20050914; allows local users to cause a denial of service (heap corruption or system crash) and possibly gain root privileges.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netbsd | Netbsd | 1.6 |
References
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2005-008.txt.ascVendor Advisory
- http://mail-index.netbsd.org/source-changes/2005/09/13/0024.htmlPatch
- http://www.osvdb.org/20757Patch
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2005-008.txt.ascVendor Advisory
- http://mail-index.netbsd.org/source-changes/2005/09/13/0024.htmlPatch
- http://www.osvdb.org/20757Patch
FAQ
What is CVE-2005-4776?
CVE-2005-4776 is a vulnerability with a CVSS score of 7.2 (HIGH). Integer overflow in the FreeBSD compatibility code (freebsd_misc.c) in NetBSD-current, NetBSD-3, NetBSD-2.0, and NetBSD-2 before 20050913; and NetBSD-1.6 before 20050914; allows local users to cause a...
How severe is CVE-2005-4776?
CVE-2005-4776 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4776?
Check the references section above for vendor advisories and patch information. Affected products include: Netbsd Netbsd.