CVE-2005-0109

NONE EPSS 39.4%
Published Mar 5, 200521y ago · Modified Jun 16, 20262w ago
Find Similar
Published Mar 5, 2005 21y ago
Last Modified Jun 16, 2026 2w ago

Description

Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain sensitive information such as cryptographic keys, via a timing attack on memory cache misses.

Threat Intelligence

EPSS Exploit Probability
39.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 121

VendorProductVersionRange
freebsdfreebsd1.1.5.1any
freebsdfreebsd2.0any
freebsdfreebsd2.0.5any
freebsdfreebsd2.1.0any
freebsdfreebsd2.1.5any
freebsdfreebsd2.1.6any
freebsdfreebsd2.1.6.1any
freebsdfreebsd2.1.7.1any
freebsdfreebsd2.2any
freebsdfreebsd2.2.2any
freebsdfreebsd2.2.3any
freebsdfreebsd2.2.4any
freebsdfreebsd2.2.5any
freebsdfreebsd2.2.6any
freebsdfreebsd2.2.8any
freebsdfreebsd3.0any
freebsdfreebsd3.0any
freebsdfreebsd3.1any
freebsdfreebsd3.2any
freebsdfreebsd3.3any
freebsdfreebsd3.4any
freebsdfreebsd3.5any
freebsdfreebsd3.5any
freebsdfreebsd3.5.1any
freebsdfreebsd3.5.1any
freebsdfreebsd3.5.1any
freebsdfreebsd4.0any
freebsdfreebsd4.0any
freebsdfreebsd4.0any
freebsdfreebsd4.1any
freebsdfreebsd4.1.1any
freebsdfreebsd4.1.1any
freebsdfreebsd4.1.1any
freebsdfreebsd4.2any
freebsdfreebsd4.2any
freebsdfreebsd4.3any
freebsdfreebsd4.3any
freebsdfreebsd4.3any
freebsdfreebsd4.3any
freebsdfreebsd4.3any
freebsdfreebsd4.4any
freebsdfreebsd4.4any
freebsdfreebsd4.4any
freebsdfreebsd4.4any
freebsdfreebsd4.5any
freebsdfreebsd4.5any
freebsdfreebsd4.5any
freebsdfreebsd4.5any
freebsdfreebsd4.5any
freebsdfreebsd4.6any
freebsdfreebsd4.6any
freebsdfreebsd4.6any
freebsdfreebsd4.6any
freebsdfreebsd4.6any
freebsdfreebsd4.6.2any
freebsdfreebsd4.7any
freebsdfreebsd4.7any
freebsdfreebsd4.7any
freebsdfreebsd4.7any
freebsdfreebsd4.7any
freebsdfreebsd4.8any
freebsdfreebsd4.8any
freebsdfreebsd4.8any
freebsdfreebsd4.8any
freebsdfreebsd4.9any
freebsdfreebsd4.9any
freebsdfreebsd4.9any
freebsdfreebsd4.10any
freebsdfreebsd4.10any
freebsdfreebsd4.10any
freebsdfreebsd4.10any
freebsdfreebsd4.11any
freebsdfreebsd4.11any
freebsdfreebsd4.11any
freebsdfreebsd5.0any
freebsdfreebsd5.0any
freebsdfreebsd5.0any
freebsdfreebsd5.0any
freebsdfreebsd5.1any
freebsdfreebsd5.1any
freebsdfreebsd5.1any
freebsdfreebsd5.1any
freebsdfreebsd5.1any
freebsdfreebsd5.2any
freebsdfreebsd5.2.1any
freebsdfreebsd5.2.1any
freebsdfreebsd5.3any
freebsdfreebsd5.3any
freebsdfreebsd5.3any
freebsdfreebsd5.3any
freebsdfreebsd5.4any
freebsdfreebsd5.4any
redhatenterprise_linux2.1any
redhatenterprise_linux2.1any
redhatenterprise_linux2.1any
redhatenterprise_linux2.1any
redhatenterprise_linux2.1any
redhatenterprise_linux2.1any
redhatenterprise_linux3.0any
redhatenterprise_linux3.0any
redhatenterprise_linux3.0any
redhatenterprise_linux4.0any
redhatenterprise_linux4.0any
redhatenterprise_linux4.0any
redhatenterprise_linux_desktop3.0any
redhatenterprise_linux_desktop4.0any
redhatfedora_corecore_3.0any
scoopenserver5.0.7any
scounixware7.1.3any
scounixware7.1.3_upany
scounixware7.1.4any
sunsolaris7.0any
sunsolaris8.0any
sunsolaris9.0any
sunsolaris9.0any
sunsolaris10.0any
ubuntuubuntu_linux4.1any
ubuntuubuntu_linux4.1any
ubuntuubuntu_linux5.04any
ubuntuubuntu_linux5.04any
ubuntuubuntu_linux5.04any

References 18

  • ftp.sco.com ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.24/SCOSA-2005.24.txt
    Third Party Advisory
  • marc.info http://marc.info/?l=freebsd-hackers&m=110994026421858&w=2
    Mailing List
  • marc.info http://marc.info/?l=freebsd-security&m=110994370429609&w=2
    Mailing List
  • marc.info http://marc.info/?l=openbsd-misc&m=110995101417256&w=2
    Mailing List
  • secunia.com http://secunia.com/advisories/15348
    Permissions Required
  • secunia.com http://secunia.com/advisories/18165
    Permissions Required
  • securitytracker.com http://securitytracker.com/id?1013967
    PatchThird Party AdvisoryVDB EntryVendor Advisory
  • sunsolve.sun.com http://sunsolve.sun.com/search/document.do?assetkey=1-26-101739-1
    Vendor Advisory
  • www-1.ibm.com http://www-1.ibm.com/support/docview.wss?uid=isg1SSRVHMCHMC_C081516_754
    Broken Link
  • daemonology.net http://www.daemonology.net/hyperthreading-considered-harmful/
    Third Party Advisory
  • daemonology.net http://www.daemonology.net/papers/htt.pdf
    Third Party Advisory
  • kb.cert.org http://www.kb.cert.org/vuls/id/911878
    Third Party AdvisoryUS Government Resource
  • redhat.com http://www.redhat.com/support/errata/RHSA-2005-476.html
    Not Applicable
  • redhat.com http://www.redhat.com/support/errata/RHSA-2005-800.html
    Not Applicable
  • securityfocus.com http://www.securityfocus.com/bid/12724
    PatchThird Party AdvisoryVDB EntryVendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2005/0540
    Permissions Required
  • vupen.com http://www.vupen.com/english/advisories/2005/3002
    Permissions Required
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9747
    Third Party Advisory

Remediation

  • securitytracker.com http://securitytracker.com/id?1013967
    PatchThird Party AdvisoryVDB EntryVendor Advisory
  • securityfocus.com http://www.securityfocus.com/bid/12724
    PatchThird Party AdvisoryVDB EntryVendor Advisory