exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

FreeBSD 7.0 - 7.2 pseudofs NULL Pointer Dereference
Posted Sep 9, 2010
Authored by Przemyslaw Frasunek

FreeBSD versions 7.0 through 7.2 suffer from a pseudofs NULL pointer dereference vulnerability. Due to a spurious call to pfs_unlock() in pfs_getattr() (as defined in sys/fs/pseudofs/pseudofs_vnops.c), a null pointer is dereferenced after calling extattr_get_attribute() on pseudofs vnode. By allocating a page at address 0x0, an attacker can overwrite an arbitrarily chosen portion of kernel memory, leading to a crash or local root escalation.

tags | advisory, kernel, local, root
systems | freebsd
MD5 | ae95fee8dbe809a26ee1bc0179eb8bf6
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
US Charges Men With Cryptocurrency Theft, SIM-Swapping Attacks
Posted Nov 15, 2019

tags | headline, hacker, phone, cybercrime, fraud, cryptography
What The Checkra1n Jailbreak Means For iDevice Security
Posted Nov 15, 2019

tags | headline, hacker, malware, phone, flaw, apple, backdoor
Open Database Exposes 93M Files On Substance Abuse Patients
Posted Nov 15, 2019

tags | headline, privacy, amazon, data loss
The Myth Of The Sophisticated Hacker
Posted Nov 15, 2019

tags | headline, hacker, privacy, cybercrime, data loss, fraud
Breach Affecting 1 Million Was Caught Only After Hacker Maxed Out Target's Storage
Posted Nov 14, 2019

tags | headline, hacker, privacy, data loss
Cryptoqueen Brother Admits Role In OneCoin Fraud
Posted Nov 14, 2019

tags | headline, bank, fraud, cryptography
Threat Actor Impersonates USPS To Deliver Backdoor Malware
Posted Nov 14, 2019

tags | headline, government, malware, usa, fraud
This App Will Tell You If Your iPhone Gets Hacked
Posted Nov 14, 2019

tags | headline, hacker, phone, apple, backdoor
This Bank Had The Worst Password Policy We've Ever Seen
Posted Nov 14, 2019

tags | headline, bank, google, password, italy
Iranian Hacking Group Built Its Own VPN Network
Posted Nov 14, 2019

tags | headline, hacker, cyberwar, iran, cryptography
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close