CVE-2005-0708

Published: May 2, 2005Modified: Apr 16, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

The sendfile system call in FreeBSD 4.8 through 4.11 and 5 through 5.4 can transfer portions of kernel memory if a file is truncated while it is being sent, which could allow remote attackers to obtain sensitive information.

Affected (63)

Products: Dragonflybsd: Dragonflybsd · Freebsd: Freebsd

1 product

1 product

Configuration A

63 vulnerable

Vulnerable Software	Affected Versions
Dragonflybsd Dragonflybsd	Version 1.0
Dragonflybsd Dragonflybsd	Version 1.1
Freebsd Freebsd	Version 4.0
Freebsd Freebsd	Version 4.0 alpha
Freebsd Freebsd	Version 4.0 releng
Freebsd Freebsd	Version 4.1.1
Freebsd Freebsd	Version 4.1.1 release
Freebsd Freebsd	Version 4.1.1 stable
Freebsd Freebsd	Version 4.10
Freebsd Freebsd	Version 4.10 release
Freebsd Freebsd	Version 4.10 releng
Freebsd Freebsd	Version 4.11 stable
Freebsd Freebsd	Version 4.1
Freebsd Freebsd	Version 4.2
Freebsd Freebsd	Version 4.2 stable
Freebsd Freebsd	Version 4.3
Freebsd Freebsd	Version 4.3 release
Freebsd Freebsd	Version 4.3 release_p38
Freebsd Freebsd	Version 4.3 releng
Freebsd Freebsd	Version 4.3 stable
Freebsd Freebsd	Version 4.4
Freebsd Freebsd	Version 4.4 release_p42
Freebsd Freebsd	Version 4.4 releng
Freebsd Freebsd	Version 4.4 stable
Freebsd Freebsd	Version 4.5
Freebsd Freebsd	Version 4.5 release
Freebsd Freebsd	Version 4.5 release_p32
Freebsd Freebsd	Version 4.5 releng
Freebsd Freebsd	Version 4.5 stable
Freebsd Freebsd	Version 4.6.2
Freebsd Freebsd	Version 4.6
Freebsd Freebsd	Version 4.6 release
Freebsd Freebsd	Version 4.6 release_p20
Freebsd Freebsd	Version 4.6 releng
Freebsd Freebsd	Version 4.6 stable
Freebsd Freebsd	Version 4.7
Freebsd Freebsd	Version 4.7 release
Freebsd Freebsd	Version 4.7 release_p17
Freebsd Freebsd	Version 4.7 releng
Freebsd Freebsd	Version 4.7 stable
Freebsd Freebsd	Version 4.8
Freebsd Freebsd	Version 4.8 pre-release
Freebsd Freebsd	Version 4.8 release_p6
Freebsd Freebsd	Version 4.8 releng
Freebsd Freebsd	Version 4.9
Freebsd Freebsd	Version 4.9 pre-release
Freebsd Freebsd	Version 4.9 releng
Freebsd Freebsd	Version 5.0
Freebsd Freebsd	Version 5.0 alpha
Freebsd Freebsd	Version 5.0 release_p14
Freebsd Freebsd	Version 5.0 releng
Freebsd Freebsd	Version 5.1
Freebsd Freebsd	Version 5.1 alpha
Freebsd Freebsd	Version 5.1 release
Freebsd Freebsd	Version 5.1 release_p5
Freebsd Freebsd	Version 5.1 releng
Freebsd Freebsd	Version 5.2.1 release
Freebsd Freebsd	Version 5.2.1 releng
Freebsd Freebsd	Version 5.2
Freebsd Freebsd	Version 5.3
Freebsd Freebsd	Version 5.3 release
Freebsd Freebsd	Version 5.3 stable
Freebsd Freebsd	Version 5.4 pre-release

References (2)

https://www.freebsd.org/security/advisories/FreeBSD-SA-05:02.sendfile.asc

Source: cve@mitre.org

https://www.freebsd.org/security/advisories/FreeBSD-SA-05:02.sendfile.asc

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.