FreeBSD Malformed ELF Image Denial of Service Vulnerability

A vulnerability exists in versions 3.x, and 4.x and 5.x prior to August 15, 2000, of FreeBSD. A failure of the ELF image activator to perform sufficient sanity checks on the ELF image header could result in local users being able to perform a denial of service attack against the machine.

By failing to handle conditions where the header had an invalid or truncated header, FreeBSD could suffer from a sign overflow bug. This in turn would cause the CPU to enter a long in-kernel loop. This can result in the machine being unavailable to remote and local users for 15 minutes or more.


Privacy Statement
Copyright 2010, SecurityFocus