Denial of Service Vulnerability in BSD-Based Operating Systems
CVE-2002-1915

5.5MEDIUM

Key Information:

Vendor

FreeBSD

Status
FreeBSD
OpenBSD
Netbsd
Vendor
CVE Published:
31 December 2002

What is CVE-2002-1915?

A vulnerability present in multiple BSD-based operating systems enables local users to cause a denial of service by exploiting the flock() system call to lock the /var/log/acculog file. This improper handling allows the user to prevent legitimate access to the log file, leading to disruption in normal system operation and potential logging failures.

References

http://www.iss.net/security_center/static/9633.php
vdb-entryx_refsource_XF
http://online.securityfocus.com/archive/1/283033
mailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/bid/5265
vdb-entryx_refsource_BID

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.