Vulnerabilities > CVE-2005-2134 - Denial-Of-Service vulnerability in NetBSD

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

local

low complexity

netbsd

NVD

Published: 2005-07-05

Updated: 2008-09-10

Summary

The (1) clcs and (2) emuxki drivers in NetBSD 1.6 through 2.0.2 allow local users to cause a denial of service (kernel crash) by using the set-parameters ioctl on an audio device to change the block size and set the pause state to "unpaused" in the same ioctl, which causes a divide-by-zero error.

Vulnerable Configurations

Part	Description	Count
OS	Netbsd Netbsd Netbsd 1.6 Netbsd Netbsd 1.6.1 Netbsd Netbsd 1.6.2 Netbsd Netbsd 2.0 Netbsd Netbsd 2.0.1 Netbsd Netbsd 2.0.2	6

References

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2005-002.txt.asc