The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and OpenBSD 2.6 and earlier, does not properly decrement a shared memory segment's reference count when the vm_map_find function fails, which could allow local users to gain read or write access to a portion of kernel memory and gain privileges.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.0033
Percentile: 0.55376

CVSS Scoring

Affected Products

• cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*
• cpe:2.3:o:netbsd:netbsd:*:*:*:*:*:*:*:*
• cpe:2.3:o:openbsd:openbsd:*:*:*:*:*:*:*:*

← Back to Home