CVE-2007-0085

Openbsd - NULL Pointer Dereference

Title source: rule

Description

Unspecified vulnerability in sys/dev/pci/vga_pci.c in the VGA graphics driver for wscons in OpenBSD 3.9 and 4.0, when the kernel is compiled with the PCIAGP option and a non-AGP device is being used, allows local users to gain privileges via unspecified vectors, possibly related to agp_ioctl NULL pointer reference.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Critical Security · clocalbsd

https://www.exploit-db.com/exploits/3094

View Code ZIP pw:eip

References (10)

[Vendor Advisory] http://ilja.netric.org/files/Unusual%20bugs%2023c3.pdf

[Third Party Advisory, VDB Entry] http://www.osvdb.org/32574

[Mailing List] http://marc.info/?l=openbsd-cvs&m=116785923301416&w=2

[Patch, Vendor Advisory] http://www.openbsd.org/errata39.html#agp

[Patch, Vendor Advisory] http://www.openbsd.org/errata.html#agp

[Patch, Vendor Advisory] http://securitytracker.com/id?1017468

[Third Party Advisory] http://www.vupen.com/english/advisories/2007/0043

[Patch, Vendor Advisory] http://secunia.com/advisories/23608

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/31276

[Mailing List] http://marc.info/?l=openbsd-cvs&m=116781980706409&w=2

Scores

EPSS 0.0022

EPSS Percentile 44.0%

Details

Status published

Products (2)

openbsd/openbsd 3.9

openbsd/openbsd 4.0

Published Jan 05, 2007

Tracked Since Feb 18, 2026