Vulnerabilities > CVE-2002-1420 - Buffer Overflow vulnerability in OpenBSD select()
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Integer signedness error in select() on OpenBSD 3.1 and earlier allows local users to overwrite arbitrary kernel memory via a negative value for the size parameter, which satisfies the boundary check as a signed integer, but is later used as an unsigned integer during a data copying operation.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |