Test Kennung:	1.3.6.1.4.1.25623.1.0.65013
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Security Advisory (FreeBSD-SA-09:13.pipe.asc)
Zusammenfassung:	The remote host is missing an update to the system; as announced in the referenced advisory FreeBSD-SA-09:13.pipe.asc
Beschreibung:	Summary: The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-09:13.pipe.asc Vulnerability Insight: Pipes are a form of inter-process communication (IPC) provided by the FreeBSD kernel. kqueue is an event management API that applications can use to monitor pipes and other kernel services. A race condition exists in the pipe close() code relating to kqueues, causing use-after-free for kernel memory, which may lead to an exploitable NULL pointer vulnerability in the kernel, kernel memory corruption, and other unpredictable results. Solution: Upgrade your system to the appropriate stable release or security branch dated after the correction date. CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3527 BugTraq ID: 36375 http://www.securityfocus.com/bid/36375 Bugtraq: 20090913 Re: [Full-disclosure] FreeBSD <= 6.1 kqueue() NULL pointer dereference (Google Search) http://www.securityfocus.com/archive/1/506449 FreeBSD Security Advisory: FreeBSD-SA-09:13 http://security.freebsd.org/advisories/FreeBSD-SA-09:13.pipe.asc http://osvdb.org/58544 http://www.securitytracker.com/id?1022982
Copyright	Copyright (C) 2009 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.