CVE-2004-0370
First published: Tue Apr 06 2004(Updated: )
The setsockopt call in the KAME Project IPv6 implementation, as used in FreeBSD 5.2, does not properly handle certain IPv6 socket options, which could allow attackers to read kernel memory and cause a system panic.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| FreeBSD Kernel | =5.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2004-0370?
CVE-2004-0370 is classified as a high severity vulnerability due to its potential to allow attackers to access sensitive kernel memory.
How do I fix CVE-2004-0370?
To fix CVE-2004-0370, it is recommended to upgrade your FreeBSD system to a version later than 5.2 that addresses this vulnerability.
What kind of attacks can exploit CVE-2004-0370?
Attackers can exploit CVE-2004-0370 to read kernel memory and potentially cause a system panic.
Which software is affected by CVE-2004-0370?
CVE-2004-0370 specifically affects FreeBSD version 5.2.
Is CVE-2004-0370 still a relevant threat?
While CVE-2004-0370 is an older vulnerability, it remains a relevant threat for systems that have not been patched or upgraded from FreeBSD 5.2.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/author
- agent/references
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/freebsd
- canonical/freebsd kernel
- version/freebsd kernel/5.2