CVE-2004-1066 in FreeBSDinfo

Summary

The cmdline pseudofiles in (1) procfs on FreeBSD 4.8 through 5.3, and (2) linprocfs on FreeBSD 5.x through 5.3, do not properly validate a process argument vector, which allows local users to cause a denial of service (panic) or read portions of kernel memory. NOTE: this candidate might be SPLIT into 2 separate items in the future.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

11/29/2004

Disclosure

01/10/2005

Moderation

VulDB entry created

Entries

1: VDB-1018

CPE

ready

CWE

CWE-404 (Confirmed)

CVSS

5.4

EPSS

0.00075

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1066
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1066
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1066/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!