• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

FreeBSD i386_get_ldt(2) Local Kernel Memory Disclosure Vulnerability

The 'i386_get_ldt(2)' system call is prone to a memory-disclosure vulnerability.

An attacker can supply a negative or excessive value as an argument to the affected system call and read arbitrary portions of kernel memory.

Information disclosed through this attack may help the attacker launch other attacks against a computer and potentially aid in a complete compromise.

NOTE: Only i386 and amd64 architectures are affected by this issue.

UPDATE (February 25, 2009): Mac OS X 10.5.5 is reported vulnerable.