Denial of Service Vulnerability in NetBSD Proplib for Local Users
CVE-2009-2483

Currently unrated

Key Information:

Vendor: Netbsd
Status: Netbsd
Vendor: CVE Published:; 16 July 2009

What is CVE-2009-2483?

A vulnerability exists in the Proplib component of NetBSD versions 4.0 and 4.0.1, where local users can trigger a denial of service by sending a malformed externalized property list (plist). This malformed plist contains an undefined element that results in a NULL pointer dereference, ultimately leading to a kernel panic. This vulnerability highlights the need for secure handling of input data to prevent disruptions in service.

References

http://secunia.com/advisories/35556

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/35466

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/51311

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 16, 2009
Vulnerability Reserved
Jul 16, 2009

CVE-2009-2483 Data

JSON

Netbsd

What is CVE-2009-2483?

References

Timeline