Vulnerabilities > CVE-2001-0993 - Denial of Service vulnerability in NetBSD sendmsg

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

local

low complexity

netbsd

NVD

Published: 2001-07-24

Updated: 2017-10-10

Summary

sendmsg function in NetBSD 1.3 through 1.5 allows local users to cause a denial of service (kernel trap or panic) via a msghdr structure with a large msg_controllen length.

Vulnerable Configurations

Part	Description	Count
OS	Netbsd Netbsd Netbsd 1.3 Netbsd Netbsd 1.3.1 Netbsd Netbsd 1.3.2 Netbsd Netbsd 1.3.3 Netbsd Netbsd 1.4 Netbsd Netbsd 1.4.1 Netbsd Netbsd 1.4.2 Netbsd Netbsd 1.4.3 Netbsd Netbsd 1.5	9

References

http://archives.neohapsis.com/archives/netbsd/2001-q3/0102.html
http://www.osvdb.org/1910
http://www.securityfocus.com/bid/3088
https://exchange.xforce.ibmcloud.com/vulnerabilities/6908