Description
The SIOCGIFCONF ioctl (ifconf function) in FreeBSD 4.x through 4.11 and 5.x through 5.4 does not properly clear a buffer before using it, which allows local users to obtain portions of sensitive kernel memory.
References (8)
Core 8
Core References
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2256
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/14959
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17368
Patch, Vendor Advisory vendor-advisory
x_refsource_freebsd
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:04.ifconf.asc
Mailing List vendor-advisory
x_refsource_apple
http://lists.apple.com/archives/security-announce/2005/Oct/msg00000.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/15252
Patch, Vendor Advisory vdb-entry
x_refsource_osvdb
http://www.osvdb.org/15514
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/20114
Scores
EPSS
0.0007
EPSS Percentile
21.3%
Details
CWE
CWE-399
Status
published
Products (16)
freebsd/freebsd
4.0 (3 CPE variants)
freebsd/freebsd
4.1
freebsd/freebsd
4.1.1 (3 CPE variants)
freebsd/freebsd
4.2 (2 CPE variants)
freebsd/freebsd
4.3 (5 CPE variants)
freebsd/freebsd
4.4 (4 CPE variants)
freebsd/freebsd
4.5 (5 CPE variants)
freebsd/freebsd
4.6 (5 CPE variants)
freebsd/freebsd
4.6.2
freebsd/freebsd
4.7 (5 CPE variants)
... and 6 more
Published
Apr 15, 2005
Tracked Since
Feb 18, 2026