Published: 22/11/2010 Updated: 15/02/2024

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The pfs_getextattr function in FreeBSD 7.x prior to 7.3-RELEASE and 8.x prior to 8.0-RC1 unlocks a mutex that was not previously locked, which allows local users to cause a denial of service (kernel panic), overwrite arbitrary memory locations, and possibly execute arbitrary code via vectors related to opening a file on a file system that uses pseudofs.

Vulnerable Product	Search on Vulmon	Subscribe to Product
freebsd freebsd
freebsd freebsd 8.0

/* * source: wwwsecurityfocuscom/bid/43060/info * 18082010, babcia padlina * FreeBSD 70 - 72 pseudofs null ptr dereference exploit * * * to obtain SYSENT8_SYCALL_ADDR, run: * $ kgdb /boot/kernel/kernel * (kgdb) print &sysent[8]sy_call */ #define SYSENT8_SYCALL_ADDR 0xc0c4afa4 /* FreeBSD 72-RELEASE */ #define _KERNEL ...

CWE-667 http://www.vupen.com/english/advisories/2010/2956 http://www.securitytracker.com/id?1024724 http://secunia.com/advisories/42200 http://security.FreeBSD.org/advisories/FreeBSD-SA-10:09.pseudofs.asc https://exchange.xforce.ibmcloud.com/vulnerabilities/63218 https://www.exploit-db.com/exploits/15206/https://nvd.nist.gov https://www.exploit-db.com/exploits/15206/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-4210

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect