Skip to main content
assistive.skiplink.to.breadcrumbs
assistive.skiplink.to.header.menu
assistive.skiplink.to.action.menu
assistive.skiplink.to.quick.search

Page History

Versions Compared

Key

This line was added.
This line was removed.
Formatting was changed.

...

Code Block
x = malloc (number * sizeof(int)); if (x == NULL) { /* Handle Allocation Error / } / ... / if (error_conditon == 1) { / Handle Error Condition/ } / ... */ free(x);

Priority: P6 Level: L2

Freeing memory multiple times can result in an attacker executing arbitrary code with the permissions of the vulnerable process.

Component	Value
Severity	3 (high)
Likelihood	2 (probable)
Remediation cost	1 (high)

References

VU#623332 http://www.kb.cert.org/vuls/id/623332
MIT krb5 Security Advisory 2005-003 http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2005-003-recvauth.txt
OWASP, Double Free http://www.owasp.org/index.php/Double_Free