CVE-2005-0637

The copy functions in locore.s such as copyout in OpenBSD 3.5 and 3.6, and possibly other BSD based operating systems, may allow attackers to exceed certain address boundaries and modify kernel memory.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://securitytracker.com/id?1013333	Patch Vendor Advisory
http://www.openbsd.org/errata35.html#locore	Patch
http://www.securityfocus.com/bid/12825	Patch
http://secunia.com/advisories/14432	Patch Vendor Advisory
http://www.openbsd.org/errata.html#copy
https://exchange.xforce.ibmcloud.com/vulnerabilities/19531

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:openbsd:openbsd:3.5:::::::*
	cpe:2.3:o:openbsd:openbsd:3.6:::::::*

Information

Published : 2005-05-01 21:00

Updated : 2017-07-10 18:32

NVD link : CVE-2005-0637

Mitre link : CVE-2005-0637

JSON object : View

CWE

NVD-CWE-Other

Products Affected

openbsd

openbsd

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://securitytracker.com/id?1013333", "name": "1013333", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECTRACK"}, {"url": "http://www.openbsd.org/errata35.html#locore", "name": "20050228 028: SECURITY FIX: February 28, 2005", "tags": ["Patch"], "refsource": "OPENBSD"}, {"url": "http://www.securityfocus.com/bid/12825", "name": "12825", "tags": ["Patch"], "refsource": "BID"}, {"url": "http://secunia.com/advisories/14432", "name": "14432", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.openbsd.org/errata.html#copy", "name": "20050228 011: SECURITY FIX: February 28, 2005 i386 only", "tags": [], "refsource": "OPENBSD"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/19531", "name": "openbsd-copy-functions(19531)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The copy functions in locore.s such as copyout in OpenBSD 3.5 and 3.6, and possibly other BSD based operating systems, may allow attackers to exceed certain address boundaries and modify kernel memory."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2005-0637", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2005-05-02T04:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:openbsd:openbsd:3.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:openbsd:openbsd:3.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-07-11T01:32Z"}

5.0 /10