Kernel Memory Disclosure Vulnerability in FreeBSD's SIOCGIFCONF ioctl

Kernel Memory Disclosure Vulnerability in FreeBSD's SIOCGIFCONF ioctl

CVE-2005-1126 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The SIOCGIFCONF ioctl (ifconf function) in FreeBSD 4.x through 4.11 and 5.x through 5.4 does not properly clear a buffer before using it, which allows local users to obtain portions of sensitive kernel memory.

Learn more about our User Device Pen Test.