CVE-2007-0085

Unspecified vulnerability in sys/dev/pci/vga_pci.c in the VGA graphics driver for wscons in OpenBSD 3.9 and 4.0, when the kernel is compiled with the PCIAGP option and a non-AGP device is being used, allows local users to gain privileges via unspecified vectors, possibly related to agp_ioctl NULL pointer reference.

CVSS v2.0 6.0 MEDIUM

6.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:H/Au:S/C:C/I:C/A:C

Exploitability : 1.5 / Impact : 10.0

Access Vector LOCAL

Access Complexity HIGH

Authentication SINGLE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://ilja.netric.org/files/Unusual%20bugs%2023c3.pdf	Vendor Advisory
http://marc.info/?l=openbsd-cvs&m=116781980706409&w=2
http://marc.info/?l=openbsd-cvs&m=116785923301416&w=2
http://secunia.com/advisories/23608	Patch Vendor Advisory
http://securitytracker.com/id?1017468	Patch Vendor Advisory
http://www.openbsd.org/errata.html#agp	Patch Vendor Advisory
http://www.openbsd.org/errata39.html#agp	Patch Vendor Advisory
http://www.osvdb.org/32574
http://www.vupen.com/english/advisories/2007/0043
https://exchange.xforce.ibmcloud.com/vulnerabilities/31276
http://ilja.netric.org/files/Unusual%20bugs%2023c3.pdf	Vendor Advisory
http://marc.info/?l=openbsd-cvs&m=116781980706409&w=2
http://marc.info/?l=openbsd-cvs&m=116785923301416&w=2
http://secunia.com/advisories/23608	Patch Vendor Advisory
http://securitytracker.com/id?1017468	Patch Vendor Advisory
http://www.openbsd.org/errata.html#agp	Patch Vendor Advisory
http://www.openbsd.org/errata39.html#agp	Patch Vendor Advisory
http://www.osvdb.org/32574
http://www.vupen.com/english/advisories/2007/0043
https://exchange.xforce.ibmcloud.com/vulnerabilities/31276

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:openbsd:openbsd:3.9:::::::*
	cpe:2.3:o:openbsd:openbsd:4.0:::::::*

History

21 Nov 2024, 00:24

Type	Values Removed	Values Added
References	~~() http://ilja.netric.org/files/Unusual%20bugs%2023c3.pdf - Vendor Advisory~~	() http://ilja.netric.org/files/Unusual%20bugs%2023c3.pdf - Vendor Advisory
References	~~() http://marc.info/?l=openbsd-cvs&m=116781980706409&w=2 -~~	() http://marc.info/?l=openbsd-cvs&m=116781980706409&w=2 -
References	~~() http://marc.info/?l=openbsd-cvs&m=116785923301416&w=2 -~~	() http://marc.info/?l=openbsd-cvs&m=116785923301416&w=2 -
References	~~() http://secunia.com/advisories/23608 - Patch, Vendor Advisory~~	() http://secunia.com/advisories/23608 - Patch, Vendor Advisory
References	~~() http://securitytracker.com/id?1017468 - Patch, Vendor Advisory~~	() http://securitytracker.com/id?1017468 - Patch, Vendor Advisory
References	~~() http://www.openbsd.org/errata.html#agp - Patch, Vendor Advisory~~	() http://www.openbsd.org/errata.html#agp - Patch, Vendor Advisory
References	~~() http://www.openbsd.org/errata39.html#agp - Patch, Vendor Advisory~~	() http://www.openbsd.org/errata39.html#agp - Patch, Vendor Advisory
References	~~() http://www.osvdb.org/32574 -~~	() http://www.osvdb.org/32574 -
References	~~() http://www.vupen.com/english/advisories/2007/0043 -~~	() http://www.vupen.com/english/advisories/2007/0043 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/31276 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/31276 -

Information

Published : 2007-01-05 11:28

Updated : 2025-04-09 00:30

NVD link : CVE-2007-0085

Mitre link : CVE-2007-0085

CVE.ORG link : CVE-2007-0085

JSON object : View

Products Affected

openbsd

openbsd

CWE

NVD-CWE-Other

6.0 /10