CVE-2008-0384
published 2008-01-22CVE-2008-0384: OpenBSD 4.2 allows local users to cause a denial of service (kernel panic) by calling the SIOCGIFRTLABEL IOCTL on an interface that does not have a route…
PriorityP415medium4.9CVSS 2.0
AVLACLAuNCNINAC
EXPLOIT
EPSS
0.85%
53.4th percentile
OpenBSD 4.2 allows local users to cause a denial of service (kernel panic) by calling the SIOCGIFRTLABEL IOCTL on an interface that does not have a route label, which triggers a NULL pointer dereference when the return value from the rtlabel_id2name function is not checked.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| openbsd | openbsd | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://marc.info/?l=openbsd-security-announce&m=120007327504064http://secunia.com/advisories/28473http://www.openbsd.org/errata42.html#005_ifrtlabelhttp://www.securityfocus.com/bid/27252http://www.securitytracker.com/id?1019188https://www.exploit-db.com/exploits/4935http://marc.info/?l=openbsd-security-announce&m=120007327504064http://secunia.com/advisories/28473http://www.openbsd.org/errata42.html#005_ifrtlabelhttp://www.securityfocus.com/bid/27252http://www.securitytracker.com/id?1019188https://www.exploit-db.com/exploits/4935
2008-01-22
Published