CVE-2016-6240 - Integer truncation error in the amap_alloc function in OpenBSD 5.8 and 5.9 allows local users to exe

CVE-2016-6240

Summary

Integer truncation error in the amap_alloc function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code with kernel privileges via a large size value.

References

http://www.openbsd.org/errata58.html
http://www.openbsd.org/errata59.html
http://www.openwall.com/lists/oss-security/2016/07/14/5
http://www.openwall.com/lists/oss-security/2016/07/17/7
http://www.securityfocus.com/bid/91805
http://www.securitytracker.com/id/1036318

Vulnerable Configurations

cpe:2.3:o:openbsd:openbsd:5.8:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:5.8:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:5.9:*:*:*:*:*:*:*
cpe:2.3:o:openbsd:openbsd:5.9:*:*:*:*:*:*:*

CVSS

Base:	7.2 (as of 01-09-2017 - 01:29)
Impact:
Exploitability:

CWE

CWE-189

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	91805
confirm	http://www.openbsd.org/errata58.html http://www.openbsd.org/errata59.html
mlist	[oss-security] 20160714 Multiple Bugs in OpenBSD Kernel [oss-security] 20160717 ReL Multiple Bugs in OpenBSD Kernel
sectrack	1036318

Last major update

01-09-2017 - 01:29

Published

07-03-2017 - 16:59

Last modified

01-09-2017 - 01:29