CVE Catalog

CVE-2000-0461

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.34%

26th percentile — higher than 26% of all known CVEs

Summary

The undocumented semconfig system call in BSD freezes the state of semaphores, allowing local users to cause a denial of service of the semaphore system.

Risk Assessment

Local users can exploit this vulnerability to disrupt the semaphore system, leading to denial of service in applications dependent on semaphores.

Recommendation

It is recommended to restrict access to the semconfig call to trusted users and to monitor semaphore usage in the system.

Original NVD description (English source)

The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS