This script is Copyright (C) 2016 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
A special combination of sysarch(2) arguments, specify a request to
uninstall a set of descriptors from the LDT. The start descriptor is
cleared and the number of descriptors are provided. Due to lack of
sufficient bounds checking during argument validity verification,
unbound zero'ing of the process LDT and adjacent memory can be
initiated from usermode. Impact : This vulnerability could cause the
kernel to panic. In addition it is possible to perform a local Denial
of Service against the system by unprivileged processes.
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 4.9
Public Exploit Available : true