CVE-2003-0804 — Freebsd vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.7%

top 27.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Apple MAC OS X Server Freebsd +1 more

Timeline

PublishedNov 17

Latest updateMay 3

Description

The arplookup function in FreeBSD 5.1 and earlier, Mac OS X before 10.2.8, and possibly other BSD-based systems, allows remote attackers on a local subnet to cause a denial of service (resource starvation and panic) via a flood of spoofed ARP requests.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶NVDapple/mac_os_x8 versions+7

▶NVDopenbsd/openbsd3.2, 3.3, 3.4+2

▶NVDapple/mac_os_x_server8 versions+7

Also affects: Freebsd 4.0, 4.1, 4.1.1, 4.2, 4.3, 4.4, 4.5, 4.6, 4.6.2, 4.7, 4.8, 4.9, 5.0, 5.1

🔴Vulnerability Details

GHSA

GHSA-rxhq-jfc6-wqxf: The arplookup function in FreeBSD 5↗2022-05-03

▶