← CVECheck
HomeVulnerabilities

CVE-2003-1234 — LOW severity vulnerability (Integer overflow in the f_count counter in FreeBSD before 4.)

Integer overflow in the f_count counter in FreeBSD before 4.2 through 5.0 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via multiple calls to (1) fpathconf and (2) lseek, which do not properly decrement f_count through a call to fdrop.

CVE IDCVE-2003-1234
SeverityLOW
CVSS score3.6
CVSS vectorAV:L/AC:L/Au:N/C:N/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2003-12-31
Last modified2026-04-16
DescriptionInteger overflow in the f_count counter in FreeBSD before 4.2 through 5.0 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via multiple calls to (1) fpathconf and (2) lseek, which do not properly decrement f_count through a call to fdrop.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →