CVE-2006-6013
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Integer signedness error in the fw_ioctl (FW_IOCTL) function in the FireWire (IEEE-1394) drivers (dev/firewire/fwdev.c) in various BSD kernels, including DragonFlyBSD, FreeBSD 5.5, MidnightBSD 0.1-CURRENT before 20061115, NetBSD-current before 20061116, NetBSD-4 before 20061203, and TrustedBSD, allows local users to read arbitrary memory contents via certain negative values of crom_buf->len in an FW_GCROM command. NOTE: this issue has been labeled as an integer overflow, but it is more like an integer signedness error.
Error de presencia de signo en entero en la función fw_ioctl (FW_IOCTL) en los controladores (dev/firewire/fwdev.c) FireWire (IEEE-1394) en varios núcleos de BSD, incluyendo DragonFlyBSD, FreeBSD 5.5, MidnightBSD 0.1-CURRENT anterior al 15/11/2006, NetBSD-current anterior al 16/11/2006, NetBSD-4 anterior al 03/12/2006, y TrustedBSD, permite a usuarios locales leer contenidos de la memoria de su elección mediante ciertos valores negativos de crom_buf->len en un comando FW_GCROM. Nota: este asunto ha sido etiquetado como un desbordamiento de entero, pero se parece más a un error de presencia de signo en entero.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2006-11-21 CVE Reserved
- 2006-11-21 CVE Published
- 2024-04-15 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (19)
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/22917 | 2018-10-17 | |
| http://security.freebsd.org/advisories/FreeBSD-SA-06:25.kmem.asc | 2018-10-17 | |
| http://www.kernelhacking.com/bsdadv1.txt | 2018-10-17 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Dragonflybsd Search vendor "Dragonflybsd" | Dragonflybsd Search vendor "Dragonflybsd" for product "Dragonflybsd" | * | - |
Affected
| ||||||
| Freebsd Search vendor "Freebsd" | Freebsd Search vendor "Freebsd" for product "Freebsd" | 5.5 Search vendor "Freebsd" for product "Freebsd" and version "5.5" | - |
Affected
| ||||||
| Midnightbsd Search vendor "Midnightbsd" | Midnightbsd Search vendor "Midnightbsd" for product "Midnightbsd" | 0.1-current Search vendor "Midnightbsd" for product "Midnightbsd" and version "0.1-current" | - |
Affected
| ||||||
| Netbsd Search vendor "Netbsd" | Netbsd Search vendor "Netbsd" for product "Netbsd" | 2.0.4 Search vendor "Netbsd" for product "Netbsd" and version "2.0.4" | - |
Affected
| ||||||
| Trustedbsd Search vendor "Trustedbsd" | Trustedbsd Search vendor "Trustedbsd" for product "Trustedbsd" | * | - |
Affected
| ||||||