CVE-2006-0145
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2006-0145
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The kernfs_xread function in kernfs in NetBSD 1.6 through 2.1, and OpenBSD 3.8, does not properly validate file offsets against negative 32-bit values that occur as a result of truncation, which allows local users to read arbitrary kernel memory and gain privileges via the lseek system call.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
NetBSD KernFS LSEEK Kernel内存泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
NetBSD是一款免费开放源代码的UNIX性质的操作系统。 NetBSD对kernfs文件系统的lseek(2)系统调用没有正确的验证文件偏移,这样用户级非特权进程可以读取任意kernel内存位置,导致泄漏敏感信息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2006-0145
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2006-0145
请登录查看更多情报信息。
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-001.txt.ascvendor-advisoryx_refsource_NETBSD
- https://nvd.nist.gov/vuln/detail/CVE-2006-0145
Same Patch Batch · n/a · 2006-01-09 · 52 CVEs total
| CVE-2006-0142 | Andromeda Andromeda.PHP跨站脚本攻击漏洞 | |
| CVE-2006-0151 | Sudo Python环境变量处理安全性绕过漏洞 | |
| CVE-2006-0150 | Dave Carrigan Auth_LDAP远程格式化字符串漏洞 | |
| CVE-2006-0144 | PHP PEAR Go-Pear.PHP任意远程代码执行漏洞 | |
| CVE-2006-0148 | NetSarang XLPD拒绝服务漏洞 | |
| CVE-2006-0147 | ADOdb for PHP 'tmssql.php'测试脚本动态代码求值漏洞 | |
| CVE-2006-0146 | ADOdb Server.PHP SQL注入漏洞 | |
| CVE-2006-0149 | SimpBook 跨站脚本攻击漏洞 | |
| CVE-2005-4352 | BSD SecureLevel时间设置安全性限制绕过漏洞 | |
| CVE-2005-4351 | FreeBSD、OpenBSD、DragonFly 绕过文件设置漏洞 | |
| CVE-2006-0083 | Stefan Frings SMS Server Tools本地格式化字符串漏洞 | |
| CVE-2006-0141 | Qualcomm Eudora Internet Mail Server多个拒绝服务漏洞 | |
| CVE-2006-0140 | Navboard多个BBCode跨站脚本攻击漏洞 | |
| CVE-2005-4592 | Bogofilter多个远程缓冲区溢出漏洞 | |
| CVE-2005-4591 | Bogofilter多个远程缓冲区溢出漏洞 | |
| CVE-2006-0139 | PD9 Software MegaBBS 信息泄露漏洞 | |
| CVE-2005-3540 | Petris本地缓冲区溢出漏洞 | |
| CVE-2005-2762 | Avaya VPNRemote VPN用户凭证泄露漏洞 | |
| CVE-2004-2653 | PD9 Software MegaBBS提升特权漏洞 | |
| CVE-2006-0138 | aMSN 拒绝服务漏洞 |
Showing top 20 of 52 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2006-0145
No comments yet