Vulnerabilities > CVE-2001-1559 - NULL Pointer Dereference vulnerability in Openbsd 2.9/3.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
The uipc system calls (uipc_syscalls.c) in OpenBSD 2.9 and 3.0 provide user mode return instead of versus rval kernel mode values to the fdrelease function, which allows local users to cause a denial of service and trigger a null dereference.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |
Common Weakness Enumeration (CWE)
Exploit-Db
description | OpenBSD 2.x/3.0 User Mode Return Value Denial Of Service Vulnerability. CVE-2001-1559. Dos exploit for openbsd platform |
id | EDB-ID:21167 |
last seen | 2016-02-02 |
modified | 2001-12-03 |
published | 2001-12-03 |
reporter | Marco Peereboom |
source | https://www.exploit-db.com/download/21167/ |
title | OpenBSD 2.x/3.0 - User Mode Return Value Denial of Service Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-12/0014.html
- http://archives.neohapsis.com/archives/bugtraq/2001-12/0014.html
- http://monkey.org/openbsd/archive/tech/0112/msg00015.html
- http://monkey.org/openbsd/archive/tech/0112/msg00015.html
- http://www.iss.net/security_center/static/7690.php
- http://www.iss.net/security_center/static/7690.php