CVE-2014-3954

critical

Published 2014-10-27 · Modified 2026-05-06

CVSS v3

—

CVSS v2

10.0

VIR risk

10.0

Description

Stack-based buffer overflow in rtsold in FreeBSD 9.1 through 10.1-RC2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted DNS parameters in a router advertisement message.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://www.freebsd.org/security/advisories/FreeBSD-SA-14%3A20.rtsold.asc

OS impact

OS	Version	Status
freebsd	9.1	affected
freebsd	9.2	affected
freebsd	9.3	affected
freebsd	10.0	affected
freebsd	10.1	affected

References

http://www.securitytracker.com/id/1031098
https://www.freebsd.org/security/advisories/FreeBSD-SA-14%3A20.rtsold.asc
http://www.securitytracker.com/id/1031098
https://www.freebsd.org/security/advisories/FreeBSD-SA-14%3A20.rtsold.asc

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.