Vulnerabilities

CVE-2006-3824

by Fred · 24/07/2006

systeminfo.c for Sun Solaris allows local users to read kernel memory via a 0 variable count argument to the sysinfo system call, which causes a -1 argument to be used by the copyout function. NOTE: this issue has been referred to as an integer overflow, but it is probably more like a signedness error or integer underflow.

Date published : 2006-07-24

http://www.securityfocus.com/bid/19104

http://www.securityfocus.com/archive/1/440849/100/100/threaded

Similar

Tags: Cybersecurity Alert