Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.9
CVSSv2

CVE-2016-1885

Published: 12/04/2016 Updated: 09/10/2018
CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 6.2 | Impact Score: 3.6 | Exploitability Score: 2.5
VMScore: 495
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Freebsd

Vulnerability Summary

Integer signedness error in the amd64_set_ldt function in sys/amd64/amd64/sys_machdep.c in FreeBSD 9.3 before p39, 10.1 before p31, and 10.2 before p14 allows local users to cause a denial of service (kernel panic) via an i386_set_ldt system call, which triggers a heap-based buffer overflow.

Vulnerable Product Search on Vulmon Subscribe to Product

freebsd freebsd 10.2

freebsd freebsd 9.3

freebsd freebsd 10.1

Vendor Advisories

Debian CVElist Bug Report Logs: kfreebsd-10: CVE-2016-1885: incorrect argument validation in sysarch(2)
Debian Bug report logs - #818426 kfreebsd-10: CVE-2016-1885: incorrect argument validation in sysarch(2) Package: src:kfreebsd-10; Maintainer for src:kfreebsd-10 is GNU/kFreeBSD Maintainers <debian-bsd@listsdebianorg>; Reported by: Steven Chamberlain <steven@pyroeuorg> Date: Wed, 16 Mar 2016 23:24:01 UTC Severity ...

Exploits

Exploit DB: FreeBSD 10.2 (x64) - 'amd64_set_ldt' Heap Overflow
/* 1 Advisory Information Title: FreeBSD Kernel amd64_set_ldt Heap Overflow Advisory ID: CORE-2016-0005 Advisory URL: wwwcoresecuritycom/content/freebsd-kernel-amd64_set_ldt-heap-overflow Date published: 2016-03-16 Date of last update: 2016-03-14 Vendors contacted: FreeBSD Release mode: Coordinated release 2 Vulnerability Information ...
Exploit DB: FreeBSD Kernel amd64_set_ldt Heap Overflow
Core Security Technologies Advisory - An integer signedness error has been found in the amd64_set_ldt() function in the FreeBSD kernel code (define d in the /sys/amd64/amd64/sys_machdepc file), which implements the i386_set_ldt system call on the amd64 version of the OS This integer signedness issue ultimately leads to a heap overflow in the kern ...

References

CWE-119http://www.securitytracker.com/id/1035309http://seclists.org/fulldisclosure/2016/Mar/56http://seclists.org/fulldisclosure/2016/Mar/67http://www.coresecurity.com/advisories/freebsd-kernel-amd64setldt-heap-overflowhttps://www.exploit-db.com/exploits/39570/https://security.FreeBSD.org/advisories/FreeBSD-SA-16:15.sysarch.aschttp://packetstormsecurity.com/files/136276/FreeBSD-Kernel-amd64_set_ldt-Heap-Overflow.htmlhttp://www.securityfocus.com/archive/1/537813/100/0/threadedhttp://www.securityfocus.com/archive/1/537812/100/0/threadedhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=818426https://nvd.nist.govhttps://www.exploit-db.com/exploits/39570/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook