Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
FreeBSD 4.6 to 4.11 and 5.x to 5.4 uses insecure default permissions for the /dev/iir device, which allows local users to execute restricted ioctl calls to read or modify data on hardware that is controlled by the iir driver.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FreeBSD IIR驱动错误权限漏洞
Vulnerability Description
FreeBSD就是一种运行在Intel平台上,可以自由使用的Unix系统。 FreeBSD系统的某些设备驱动程序访问控制实现上存在漏洞,攻击者可能利用来非法获取内存信息。 iir(4)驱动支持Intel集成的RAID控制器和ICP Vortex RAID控制器。/dev/iir设备节点的默认权限允许本地非特权用户打打开设备并执行ioctl调用,这样攻击者就可以向iir(4)驱动支持的硬件发送命令,导致数据破坏并可能泄漏数据。
CVSS Information
N/A
Vulnerability Type
N/A