CVE-2005-2218

The device file system (devfs) in FreeBSD 5.x does not properly check parameters of the node type when creating a device node, which makes hidden devices available to attackers, who can then bypass restrictions on a jailed process.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:17.devfs.asc
http://secunia.com/advisories/16145
http://securitytracker.com/id?1014536
http://www.osvdb.org/18123
http://www.securityfocus.com/bid/14334
https://exchange.xforce.ibmcloud.com/vulnerabilities/21451

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:freebsd:freebsd:5.0:::::::*
	cpe:2.3:o:freebsd:freebsd:5.0:alpha::::::
	cpe:2.3:o:freebsd:freebsd:5.0:release_p14::::::
	cpe:2.3:o:freebsd:freebsd:5.0:releng::::::
	cpe:2.3:o:freebsd:freebsd:5.1:::::::*
	cpe:2.3:o:freebsd:freebsd:5.1:alpha::::::
	cpe:2.3:o:freebsd:freebsd:5.1:release::::::
	cpe:2.3:o:freebsd:freebsd:5.1:release_p5::::::
	cpe:2.3:o:freebsd:freebsd:5.1:releng::::::
	cpe:2.3:o:freebsd:freebsd:5.2:::::::*
	cpe:2.3:o:freebsd:freebsd:5.2.1:::::::*
	cpe:2.3:o:freebsd:freebsd:5.2.1:release::::::
	cpe:2.3:o:freebsd:freebsd:5.2.1:releng::::::
	cpe:2.3:o:freebsd:freebsd:5.3:::::::*
	cpe:2.3:o:freebsd:freebsd:5.3:release::::::
	cpe:2.3:o:freebsd:freebsd:5.3:releng::::::
	cpe:2.3:o:freebsd:freebsd:5.3:stable::::::
	cpe:2.3:o:freebsd:freebsd:5.4:::::::*
	cpe:2.3:o:freebsd:freebsd:5.4:pre-release::::::
	cpe:2.3:o:freebsd:freebsd:5.4:release::::::
	cpe:2.3:o:freebsd:freebsd:5.4:releng::::::

History

No history.

Information

Published : 2005-07-26 04:00

Updated : 2024-02-04 16:52

NVD link : CVE-2005-2218

Mitre link : CVE-2005-2218

CVE.ORG link : CVE-2005-2218

JSON object : View

Products Affected

freebsd

freebsd

CWE

NVD-CWE-Other

{"id": "CVE-2005-2218", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2005-07-26T04:00:00.000", "references": [{"url": "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:17.devfs.asc", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/16145", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1014536", "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/18123", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/14334", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/21451", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The device file system (devfs) in FreeBSD 5.x does not properly check parameters of the node type when creating a device node, which makes hidden devices available to attackers, who can then bypass restrictions on a jailed process."}, {"lang": "es", "value": "El sistema de ficheros de dispositivos en FreeBSD 5.x no comprueba adecuadamente los par\u00e1metros del tipo de nodo cuando crea un nodo de dispositivo, lo que hace que dispositivos ocultos est\u00e9n disponibles a tacantes (quienes pueden por tanto sortear restricciones en ciertos procesos)."}], "lastModified": "2017-07-11T01:32:47.360", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "61EBA52A-2D8B-4FB5-866E-AE67CE1842E7"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:alpha:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B13D898-C1B6-44B9-8432-7DDB8A380E9E"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:release_p14:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51A612F6-E4EB-4E34-8F55-79E16C74758E"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:releng:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C19B266-8FE7-49ED-8678-2D522257491D"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EE93350-92E6-4F5C-A14C-9993CFFDBCD4"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:alpha:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15C4D826-A419-45F5-B91C-1445DB480916"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:release:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D9F2B04-A1F2-4788-A53D-C8274A758DDA"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:release_p5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FEC7B38F-C6FB-4213-AE18-2D039A4D8E7A"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:releng:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A5309ED-D84F-4F52-9864-5B0FEEEE5022"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DD7C441E-444B-4DF5-8491-86805C70FB99"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BAD73CDB-94C5-4DBF-8B4C-DD3E4E399445"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.2.1:release:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9CCE8F3-84EE-4571-8AAA-BF2D132E9BD4"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.2.1:releng:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E4BC012-ADE4-468F-9A25-261CD8055694"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8A80E6A-6502-4A33-83BA-7DCC606D79AA"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.3:release:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D6428EB-5E1A-41CB-979C-4C9402251D8B"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.3:releng:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2DCA9879-C9F5-475A-8EC9-04D151001C8D"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.3:stable:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A94132F-4C47-49CC-B03C-8756613E9A38"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD85B1ED-1473-4C22-9E1E-53F07CF517E9"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.4:pre-release:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46A60ED5-1D92-4B40-956F-D1801CAB9039"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.4:release:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F629879-66F0-427B-86D8-D740E0E3F6E8"}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.4:releng:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C89129C5-A1DB-4018-B43A-C60C8E650080"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}