|
|
Info |
Last Modified |
| 9 months ago |
|
|
|
|
Description |
Local overflows exists in brouted, a FreeBSD port. This dynamic routing daemon fails to validate input resulting in buffer overflows. With a specially crafted request, an attacker can obtain the privileges of kmem because brouted is incorrectly installed setgid kmem. A malicious user can then upgrade from the kmem privileges to root access by manipulating kernel memory resulting in a loss of integrity.
|
|
Classification |
Location:
Local Access Required
Attack Type:
Input Manipulation
Impact:
Loss of Integrity
Exploit:
Exploit Rumored / Private
Disclosure:
OSVDB Verified
|
|
Solution |
Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workarounds: (1) remove the setgid bit on the /usr/local/sbin/brouted file, (2) upgrade your entire ports collection and rebuild the brouted port, (3) deinstall the old package and install a new package dated after the correction date, (4) download a new port skeleton for the brouted port, and (5) use the portcheckout utility to automate aforementioned option (4).
|
|
Products |
|
FreeBSD
 |
4.0 |
5.0 |
5.0 alpha |
3.5 |
4.1 |
4.0 alpha |
|
|
|
|
Credit |
Unknown or Incomplete
|
|
BlogsProvided by Technorati
|
None found at this time
|
|
|
