Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The kernel in NetBSD, probably 5.0.1 and earlier, on x86 platforms does not properly handle a pre-commit failure of the iret instruction, which might allow local users to gain privileges via vectors related to a tempEIP pseudocode variable that is outside of the code-segment limits.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NetBSD IRET通用保护错误处理本地权限提升漏洞
Vulnerability Description
NetBSD是一款免费开放源代码的UNIX性质的操作系统。 在Intel架构上,操作系统内核完成了对中断或异常的服务后通常会使用iret返回到用户态。iret指令会恢复执行继续所需的上下文,如代码段、指令指针、标记等。在受保护模式中iret会分为两个不同的阶段执行,分别为提交前阶段(pre-commit,权限级别改变之前)和提交后阶段(post-commit,权限级别改变后)。可在以下伪代码中找到提交点: IF new mode != 64-Bit Mode THEN IF tempEIP is not
CVSS Information
N/A
Vulnerability Type
N/A