CVE-2005-2218 - OpenCVE

The device file system (devfs) in FreeBSD 5.x does not properly check parameters of the node type when creating a device node, which makes hidden devices available to attackers, who can then bypass restrictions on a jailed process.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Freebsd	Freebsd

Configuration 1 [-]

OR	cpe:2.3:o:freebsd:freebsd:5.0:::::::*
	cpe:2.3:o:freebsd:freebsd:5.0:alpha::::::
	cpe:2.3:o:freebsd:freebsd:5.0:release_p14::::::
	cpe:2.3:o:freebsd:freebsd:5.0:releng::::::
	cpe:2.3:o:freebsd:freebsd:5.1:::::::*
	cpe:2.3:o:freebsd:freebsd:5.1:alpha::::::
	cpe:2.3:o:freebsd:freebsd:5.1:release::::::
	cpe:2.3:o:freebsd:freebsd:5.1:release_p5::::::
	cpe:2.3:o:freebsd:freebsd:5.1:releng::::::
	cpe:2.3:o:freebsd:freebsd:5.2:::::::*
	cpe:2.3:o:freebsd:freebsd:5.2.1:::::::*
	cpe:2.3:o:freebsd:freebsd:5.2.1:release::::::
	cpe:2.3:o:freebsd:freebsd:5.2.1:releng::::::
	cpe:2.3:o:freebsd:freebsd:5.3:::::::*
	cpe:2.3:o:freebsd:freebsd:5.3:release::::::
	cpe:2.3:o:freebsd:freebsd:5.3:releng::::::
	cpe:2.3:o:freebsd:freebsd:5.3:stable::::::
	cpe:2.3:o:freebsd:freebsd:5.4:::::::*
	cpe:2.3:o:freebsd:freebsd:5.4:pre-release::::::
	cpe:2.3:o:freebsd:freebsd:5.4:release::::::
	cpe:2.3:o:freebsd:freebsd:5.4:releng::::::

References

Link	Resource
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:17.devfs.asc
http://secunia.com/advisories/16145
http://securitytracker.com/id?1014536
http://www.osvdb.org/18123
http://www.securityfocus.com/bid/14334
https://exchange.xforce.ibmcloud.com/vulnerabilities/21451

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2005-07-26T04:00:00

Updated: 2017-07-10T14:57:01

Reserved: 2005-07-12T00:00:00

Link: CVE-2005-2218

JSON object: View

NVD Information

Status : Modified

Published: 2005-07-26T04:00:00.000

Modified: 2017-07-11T01:32:47.360

Link: CVE-2005-2218

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-07-20T00:00:00", "descriptions": [{"lang": "en", "value": "The device file system (devfs) in FreeBSD 5.x does not properly check parameters of the node type when creating a device node, which makes hidden devices available to attackers, who can then bypass restrictions on a jailed process."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "14334", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/14334"}, {"name": "18123", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/18123"}, {"name": "freebsd-devfs-gain-privileges(21451)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/21451"}, {"name": "16145", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/16145"}, {"name": "1014536", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1014536"}, {"name": "FreeBSD-SA-05:17", "tags": ["vendor-advisory", "x_refsource_FREEBSD"], "url": "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:17.devfs.asc"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-2218", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The device file system (devfs) in FreeBSD 5.x does not properly check parameters of the node type when creating a device node, which makes hidden devices available to attackers, who can then bypass restrictions on a jailed process."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "14334", "refsource": "BID", "url": "http://www.securityfocus.com/bid/14334"}, {"name": "18123", "refsource": "OSVDB", "url": "http://www.osvdb.org/18123"}, {"name": "freebsd-devfs-gain-privileges(21451)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/21451"}, {"name": "16145", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/16145"}, {"name": "1014536", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1014536"}, {"name": "FreeBSD-SA-05:17", "refsource": "FREEBSD", "url": "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:17.devfs.asc"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-2218", "datePublished": "2005-07-26T04:00:00", "dateReserved": "2005-07-12T00:00:00", "dateUpdated": "2017-07-10T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "61EBA52A-2D8B-4FB5-866E-AE67CE1842E7", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:alpha:*:*:*:*:*:*", "matchCriteriaId": "3B13D898-C1B6-44B9-8432-7DDB8A380E9E", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:release_p14:*:*:*:*:*:*", "matchCriteriaId": "51A612F6-E4EB-4E34-8F55-79E16C74758E", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.0:releng:*:*:*:*:*:*", "matchCriteriaId": "5C19B266-8FE7-49ED-8678-2D522257491D", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:*:*:*:*:*:*:*", "matchCriteriaId": "4EE93350-92E6-4F5C-A14C-9993CFFDBCD4", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:alpha:*:*:*:*:*:*", "matchCriteriaId": "15C4D826-A419-45F5-B91C-1445DB480916", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:release:*:*:*:*:*:*", "matchCriteriaId": "0D9F2B04-A1F2-4788-A53D-C8274A758DDA", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:release_p5:*:*:*:*:*:*", "matchCriteriaId": "FEC7B38F-C6FB-4213-AE18-2D039A4D8E7A", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.1:releng:*:*:*:*:*:*", "matchCriteriaId": "9A5309ED-D84F-4F52-9864-5B0FEEEE5022", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.2:*:*:*:*:*:*:*", "matchCriteriaId": "DD7C441E-444B-4DF5-8491-86805C70FB99", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "BAD73CDB-94C5-4DBF-8B4C-DD3E4E399445", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.2.1:release:*:*:*:*:*:*", "matchCriteriaId": "C9CCE8F3-84EE-4571-8AAA-BF2D132E9BD4", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.2.1:releng:*:*:*:*:*:*", "matchCriteriaId": "8E4BC012-ADE4-468F-9A25-261CD8055694", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.3:*:*:*:*:*:*:*", "matchCriteriaId": "D8A80E6A-6502-4A33-83BA-7DCC606D79AA", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.3:release:*:*:*:*:*:*", "matchCriteriaId": "0D6428EB-5E1A-41CB-979C-4C9402251D8B", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.3:releng:*:*:*:*:*:*", "matchCriteriaId": "2DCA9879-C9F5-475A-8EC9-04D151001C8D", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.3:stable:*:*:*:*:*:*", "matchCriteriaId": "0A94132F-4C47-49CC-B03C-8756613E9A38", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.4:*:*:*:*:*:*:*", "matchCriteriaId": "AD85B1ED-1473-4C22-9E1E-53F07CF517E9", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.4:pre-release:*:*:*:*:*:*", "matchCriteriaId": "46A60ED5-1D92-4B40-956F-D1801CAB9039", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.4:release:*:*:*:*:*:*", "matchCriteriaId": "3F629879-66F0-427B-86D8-D740E0E3F6E8", "vulnerable": true}, {"criteria": "cpe:2.3:o:freebsd:freebsd:5.4:releng:*:*:*:*:*:*", "matchCriteriaId": "C89129C5-A1DB-4018-B43A-C60C8E650080", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The device file system (devfs) in FreeBSD 5.x does not properly check parameters of the node type when creating a device node, which makes hidden devices available to attackers, who can then bypass restrictions on a jailed process."}, {"lang": "es", "value": "El sistema de ficheros de dispositivos en FreeBSD 5.x no comprueba adecuadamente los par\u00e1metros del tipo de nodo cuando crea un nodo de dispositivo, lo que hace que dispositivos ocultos est\u00e9n disponibles a tacantes (quienes pueden por tanto sortear restricciones en ciertos procesos)."}], "id": "CVE-2005-2218", "lastModified": "2017-07-11T01:32:47.360", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-07-26T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:17.devfs.asc"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/16145"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1014536"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/18123"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/14334"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/21451"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}