CVE-2006-4516
published 2006-10-12CVE-2006-4516: Integer signedness error in FreeBSD 6.0-RELEASE allows local users to cause a denial of service (memory corruption and kernel panic) via a PT_LWPINFO ptrace…
PriorityP416medium4.9CVSS 2.0
AVLACLAuNCNINAC
EXPLOIT
EPSS
0.78%
51.4th percentile
Integer signedness error in FreeBSD 6.0-RELEASE allows local users to cause a denial of service (memory corruption and kernel panic) via a PT_LWPINFO ptrace command with a large negative data value that satisfies a signed maximum value check but is used in an unsigned copyout function call.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| freebsd | freebsd | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=419http://secunia.com/advisories/22367http://www.securityfocus.com/bid/20440https://exchange.xforce.ibmcloud.com/vulnerabilities/29476http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=419http://secunia.com/advisories/22367http://www.securityfocus.com/bid/20440https://exchange.xforce.ibmcloud.com/vulnerabilities/29476
2006-10-12
Published