Vulnerability Details : CVE-2008-5736
Multiple unspecified vulnerabilities in FreeBSD 6 before 6.4-STABLE, 6.3 before 6.3-RELEASE-p7, 6.4 before 6.4-RELEASE-p1, 7.0 before 7.0-RELEASE-p7, 7.1 before 7.1-RC2, and 7 before 7.1-PRERELEASE allow local users to gain privileges via unknown attack vectors related to function pointers that are "not properly initialized" for (1) netgraph sockets and (2) bluetooth sockets.
Products affected by CVE-2008-5736
- cpe:2.3:o:freebsd:freebsd:6.3:p1:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:6.4:-:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:6.3:p3:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:6.3:p4:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:6.3:p5:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:6.3:p6:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:6.3:-:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:6.3:p2:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:6.0:-:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:7.0:-:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:7.0:p6:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:7.1:rc1:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:7.0:p1:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:7.0:p3:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:7.0:p4:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:7.0:p5:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:7.1:-:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2008-5736
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 9 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2008-5736
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
CWE ids for CVE-2008-5736
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2008-5736
-
http://www.exploit-db.com/exploits/16951
Third Party Advisory;VDB Entry
-
http://securityreason.com/securityalert/8124
Third Party Advisory
-
http://security.freebsd.org/advisories/FreeBSD-SA-08:13.protosw.asc
Vendor Advisory
-
https://www.exploit-db.com/exploits/7581
Third Party Advisory;VDB Entry
-
http://www.securityfocus.com/bid/32976
Third Party Advisory;VDB Entry
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/47570
VDB Entry
-
http://www.securitytracker.com/id?1021491
Third Party Advisory;VDB Entry
Jump to