CVE-2008-5736

Freebsd - Access Control

Title source: rule

Description

Multiple unspecified vulnerabilities in FreeBSD 6 before 6.4-STABLE, 6.3 before 6.3-RELEASE-p7, 6.4 before 6.4-RELEASE-p1, 7.0 before 7.0-RELEASE-p7, 7.1 before 7.1-RC2, and 7 before 7.1-PRERELEASE allow local users to gain privileges via unknown attack vectors related to function pointers that are "not properly initialized" for (1) netgraph sockets and (2) bluetooth sockets.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Don Bailey · clocalfreebsd

https://www.exploit-db.com/exploits/7581

View Code ZIP pw:eip

exploitdb WORKING POC

by zx2c4 · clocalbsd

https://www.exploit-db.com/exploits/16951

View Code ZIP pw:eip

References (9)

[Broken Link] http://osvdb.org/50936

[Vendor Advisory] http://secunia.com/advisories/33209

[Vendor Advisory] http://security.freebsd.org/advisories/FreeBSD-SA-08:13.protosw.asc

[Third Party Advisory] http://securityreason.com/securityalert/8124

[Third Party Advisory, VDB Entry] http://www.exploit-db.com/exploits/16951

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/32976

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1021491

[VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/47570

[Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/7581

Scores

EPSS 0.0039

EPSS Percentile 59.9%

Details

CWE

CWE-264

Status published

Products (5)

freebsd/freebsd 6.0

freebsd/freebsd 6.3 (7 CPE variants)

freebsd/freebsd 6.4

freebsd/freebsd 7.0 (6 CPE variants)

freebsd/freebsd 7.1 (2 CPE variants)

Published Dec 26, 2008

Tracked Since Feb 18, 2026