CVE-2003-1234
FreeBSD < 5.0 - Denial of Service via f_count Integer Overflow
Title source: llmDescription
Integer overflow in the f_count counter in FreeBSD before 4.2 through 5.0 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via multiple calls to (1) fpathconf and (2) lseek, which do not properly decrement f_count through a call to fdrop.
References (9)
Core 9
Core References
Various Sources x_refsource_misc
http://www.pine.nl/press/pine-cert-20030101.txt
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/305308/30/26420/threaded
Third Party Advisory mailing-list
x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0006.html
Vendor Advisory vendor-advisory
x_refsource_freebsd
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:44.filedesc.asc
Patch mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2003-01/0057.html
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/6524
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1005898
Patch vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/10993.php
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/7821
Scores
EPSS
0.0007
EPSS Percentile
20.8%
Details
Status
published
Products (32)
freebsd/freebsd
1.1.5.1
freebsd/freebsd
2.1.0
freebsd/freebsd
2.1.5
freebsd/freebsd
2.1.6
freebsd/freebsd
2.1.6.1
freebsd/freebsd
2.1.7
freebsd/freebsd
2.1.7.1
freebsd/freebsd
2.2 (2 CPE variants)
freebsd/freebsd
2.2.1
freebsd/freebsd
2.2.2
... and 22 more
Published
Dec 31, 2003
Tracked Since
Feb 18, 2026