Test ID:	1.3.6.1.4.1.25623.1.0.52657
Category:	FreeBSD Local Security Checks
Title:	FreeBSD Security Advisory (FreeBSD-SA-04:15.syscons.asc)
Summary:	The remote host is missing an update to the system; as announced in the referenced advisory FreeBSD-SA-04:15.syscons.asc
Description:	Summary: The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-04:15.syscons.asc Vulnerability Insight: syscons(4) is the default console driver for FreeBSD. Using the physical keyboard and screen, it provides multiple virtual terminals which appear as if they were separate terminals. One virtual terminal is considered current and exclusively occupies the screen and the keyboard. The other virtual terminals are placed in the background. The syscons CONS_SCRSHOT ioctl(2) does insufficient validation of its input arguments. In particular, negative coordinates or large coordinates may cause unexpected behavior. Solution: Upgrade your system to the appropriate stable release or security branch dated after the correction date. CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0919 BugTraq ID: 11321 http://www.securityfocus.com/bid/11321 CERT/CC vulnerability note: VU#969078 http://www.kb.cert.org/vuls/id/969078 FreeBSD Security Advisory: FreeBSD-SA-04:15 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:15.syscons.asc http://secunia.com/advisories/12722 XForce ISS Database: syscons-consscrshot-info-disclosure(17584) https://exchange.xforce.ibmcloud.com/vulnerabilities/17584
Copyright	Copyright (C) 2008 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.