FreeBSD IPv6 'SIOCSIFINFO_IN6'权限检查本地安全绕过漏洞

基本字段

漏洞编号：: SSV-11600

披露/发现时间：: 未知

提交时间：: 2009-06-13

漏洞等级：

漏洞类别：: 越权访问

影响组件：: FreeBSD
(影响版本较多,点击查看)

漏洞作者：: 未知

提交者：: Knownsec

CVE-ID：: 补充

CNNVD-ID：: 补充

CNVD-ID：: 补充

ZoomEye Dork：: 补充

来源

漏洞详情

贡献者 Knownsec 共获得 0KB

Bugraq ID: 35285 CNCAN ID：CNCAN-2009061102 FreeBSD是一款开放源代码的BSD操作系统。 FreeBSD针对"SIOCSIFINFO_IN6" IOCTL缺少正确的权限检查，本地攻击者可以利用漏洞修改网络设置导致拒绝服务等攻击。当修改IPv6网络栈属性时缺少正确的权限检查，发送特殊构建的"SIOCSIFINFO_IN6" IOCTLs可导致更改部分IPv6接口设置(如MTU)或禁用IPv6接口。 FreeBSD FreeBSD 7.2-STABLE FreeBSD FreeBSD 7.1-RELEASE-p6 FreeBSD FreeBSD 7.1-RELEASE-p5 FreeBSD FreeBSD 7.1-RELEASE-p4 FreeBSD FreeBSD 7.1 -RELEASE-p2 FreeBSD FreeBSD 7.1 -RELEASE-p1 FreeBSD FreeBSD 6.4-RELEASE-p5 FreeBSD FreeBSD 6.4-RELEASE-p4 FreeBSD FreeBSD 6.4-RELEASE-p2 FreeBSD FreeBSD 6.4 -STABLE FreeBSD FreeBSD 6.4 -RELEASE-p3 FreeBSD FreeBSD 6.4 -RELEASE FreeBSD FreeBSD 6.3-RELEASE-p11 FreeBSD FreeBSD 6.3-RELEASE-p10 FreeBSD FreeBSD 6.3 -RELENG FreeBSD FreeBSD 6.3 -RELEASE-p9 FreeBSD FreeBSD 6.3 -RELEASE-p8 FreeBSD FreeBSD 6.3 -RELEASE-p6 FreeBSD FreeBSD 6.3 可参考如下补丁： FreeBSD FreeBSD 6.4 -STABLE FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.3 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.3 -RELEASE-p6 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.4-RELEASE-p5 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.3 -RELEASE-p8 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.4 -RELEASE-p3 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.4 -RELEASE FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.4-RELEASE-p4 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.4-RELEASE-p2 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.3-RELEASE-p11 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 7.1-RELEASE-p6 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.3-RELEASE-p10 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 7.1-RELEASE-p5 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 7.1-RELEASE-p4 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.3 -RELENG FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 7.2-STABLE FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 7.1 -RELEASE-p1 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 6.3 -RELEASE-p9 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a> FreeBSD FreeBSD 7.1 -RELEASE-p2 FreeBSD ipv6-6.patch <a href="http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch" target="_blank" rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:10/ipv6-6.patch</a>

共 0 兑换了

PoC

暂无 PoC

参考链接

http://secunia.com/advisories/35410/

解决方案

临时解决方案

官方解决方案

防护方案

※本站提供的任何内容、代码与服务仅供学习，请勿用于非法用途，否则后果自负

FreeBSD IPv6 'SIOCSIFINFO_IN6'权限检查本地安全绕过漏洞

基本字段

来源

漏洞详情

PoC

参考链接

解决方案

生命线

相关漏洞

评论前需绑定手机现在绑定

暂无评论

FreeBSD IPv6 'SIOCSIFINFO_IN6'权限检查本地安全绕过漏洞

基本字段

来源

漏洞详情

PoC

参考链接

解决方案

生命线

相关漏洞

评论前需绑定手机 现在绑定

暂无评论

您好，

您好，

评论前需绑定手机现在绑定