Privilege Escalation Vulnerability in System V Shared Memory on FreeBSD, NetBSD, and OpenBSD
CVE-2004-0114

Currently unrated

Key Information:

Vendor: OpenBSD
Status: OpenBSD; FreeBSD; Netbsd
Vendor: CVE Published:; 3 March 2004

What is CVE-2004-0114?

The shmat system call in the System V Shared Memory interface for FreeBSD, NetBSD, and OpenBSD has a flaw in reference count management. When the vm_map_find function fails, it fails to decrement the reference count of a shared memory segment. This oversight allows local users to potentially access kernel memory regions, leading to unauthorized read or write operations and enabling privilege escalation within the system.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/15061

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/9586

vdb-entryx_refsource_BID

http://www.osvdb.org/3836

vdb-entryx_refsource_OSVDB

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 3, 2004
Vulnerability Reserved
Feb 3, 2004