Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

Vulnerability IntelligenceCVE-2005-1406

CVE-2005-1406

UNKNOWN

The kernel in FreeBSD 4

Published May 6, 2005

Modified 1 years ago

Details

The kernel in FreeBSD 4.x to 4.11 and 5.x to 5.4 does not properly clear certain fixed-length buffers when copying variable-length data for use by applications, which could allow those applications to read previously used sensitive memory.

References

ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:08.kmem.asc

http://lists.apple.com/archives/security-announce/2005/Oct/msg00000.html

http://secunia.com/advisories/17368

http://www.securityfocus.com/bid/13526

http://www.securityfocus.com/bid/15252

http://www.vupen.com/english/advisories/2005/2256

https://www.cve.org/CVERecord?id=CVE-2005-1406

CVSS Analysis

CVSS v2.0

4.6

Exploitability

Access Vector

LocalAV:L

Access Complexity

LowAC:L

Authentication

NoneAu:N

Impact

Confidentiality

PartialC:P

Integrity

PartialI:P

Availability

PartialA:P

4.6/AV:L/AC:L/Au:N/C:P/I:P/A:P

Ecosystems

Timeline

PublishedMay 6, 2005

ModifiedAug 7, 2024

CVE-2005-1406 | Mondoo Vulnerability Intelligence