Vulnerabilities > CVE-2006-4178 - Local Denial of Service vulnerability in FreeBSD I386_Set_LDT()

047910
CVSS 4.9 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
local
low complexity
freebsd
exploit available
NVD
Published: 2006-09-26
Updated: 2018-10-17

Summary

Integer signedness error in the i386_set_ldt call in FreeBSD 5.5, and possibly earlier versions down to 5.2, allows local users to cause a denial of service (crash) via unspecified arguments that use negative signed integers to cause the bzero function to be called with a large length parameter, a different vulnerability than CVE-2006-4172.

Vulnerable Configurations

Part Description Count
OS
Freebsd
338

Exploit-Db

descriptionFreeBSD 5.x I386_Set_LDT() Multiple Local Denial of Service Vulnerabilities. CVE-2006-4178. Dos exploit for freebsd platform
idEDB-ID:28648
last seen2016-02-03
modified2006-09-23
published2006-09-23
reporterAdriano Lima
sourcehttps://www.exploit-db.com/download/28648/
titleFreeBSD 5.x I386_Set_LDT Multiple Local Denial of Service Vulnerabilities

References