CVE-2009-1935: CVE-2009-1935

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-1935

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Integer overflow in the pipe_build_write_buffer function (sys/kern/sys_pipe.c) in the direct write optimization feature in the pipe implementation in FreeBSD 7.1 through 7.2 and 6.3 through 6.4 allows local users to bypass virtual-to-physical address lookups and read sensitive information in memory pages via unspecified vectors.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

FreeBSD直接管道写操作本地信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 FreeBSD和其他UNIX类系统上最常见的进程间通讯方式之一是匿名管道。这种机制会创建一对文件描述符，可以从一个描述符读取写入到另一个描述符的数据。 FreeBSD的管道实现中包含名为"直接写入"的优化。在这种优化中，FreeBSD内核利用虚拟内存映射允许直接在进程之间拷贝数据，而不是在调用write(2)时将数据拷贝到内核内存，然后在调用read(2)时再次拷贝数据。在计算包含有所要拷贝数据的页面集时存在整数溢出

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-1935

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-1935

Please Login to view more intelligence information

http://security.freebsd.org/patches/SA-09:09/pipe.patchx_refsource_CONFIRM
http://secunia.com/advisories/35398third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/55044vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/35279vdb-entryx_refsource_BID
http://www.securitytracker.com/id?1022365vdb-entryx_refsource_SECTRACK
http://security.freebsd.org/advisories/FreeBSD-SA-09:09.pipe.ascvendor-advisoryx_refsource_FREEBSD
https://exchange.xforce.ibmcloud.com/vulnerabilities/51109vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2009-1935

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2009-1935

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2009-1935

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-1935

III. Intelligence Information for CVE-2009-1935

New Vulnerabilities

V. Comments for CVE-2009-1935

Leave a comment