Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2009-3527

Race condition in the Pipe (IPC) close function in FreeBSD 6.3 and 6.4 allows local users to cause a denial of service (crash) or gain privileges via vectors related to kqueues, which triggers a use after free, leading to a NULL pointer dereference or memory corruption.

  • Published: Oct 7, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-3527
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.9
  • AV:L/AC:M/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
freebsd / freebsd 6.4 6.4.x
freebsd / freebsd 6.3 6.3.x