CVE-2006-4178 : Integer signedness error in the i386_set_ldt call in FreeBSD 5.5, and possibly e

Integer signedness error in the i386_set_ldt call in FreeBSD 5.5, and possibly earlier versions down to 5.2, allows local users to cause a denial of service (crash) via unspecified arguments that use negative signed integers to cause the bzero function to be called with a large length parameter, a different vulnerability than CVE-2006-4172.

Published 2006-09-26 02:07:00

Updated 2018-10-17 21:33:50

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2006-4178

Freebsd » Freebsd
Versions up to, including, (<=) 5.5
cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*
Matching versions
Freebsd » Freebsd » Version: 5.2
cpe:2.3:o:freebsd:freebsd:5.2:*:*:*:*:*:*:*
Matching versions
Freebsd » Freebsd » Version: 5.3
cpe:2.3:o:freebsd:freebsd:5.3:*:*:*:*:*:*:*
Matching versions
Freebsd » Freebsd » Version: 5.2.1
cpe:2.3:o:freebsd:freebsd:5.2.1:*:*:*:*:*:*:*
Matching versions
Freebsd » Freebsd » Version: 5.4
cpe:2.3:o:freebsd:freebsd:5.4:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2006-4178

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 10 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2006-4178

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.9	MEDIUM	AV:L/AC:L/Au:N/C:N/I:N/A:C	3.9	6.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete

References for CVE-2006-4178

Jump to

Vulnerability Details : CVE-2006-4178

Products affected by CVE-2006-4178

Exploit prediction scoring system (EPSS) score for CVE-2006-4178

CVSS scores for CVE-2006-4178

References for CVE-2006-4178