FreeBSD IIR(4) Driver Incorrect Permissions Vulnerability
BID:13525
Info
FreeBSD IIR(4) Driver Incorrect Permissions Vulnerability
| Bugtraq ID: | 13525 |
| Class: | Design Error |
| CVE: |
CVE-2005-1399 |
| Remote: | No |
| Local: | Yes |
| Published: | May 06 2005 12:00AM |
| Updated: | Jul 12 2009 02:06PM |
| Credit: | Discovery is credited to Christian S.J. Peron. |
| Vulnerable: |
FreeBSD FreeBSD 5.4 -PRERELEASE FreeBSD FreeBSD 5.3 -STABLE FreeBSD FreeBSD 5.3 -RELENG FreeBSD FreeBSD 5.3 -RELEASE FreeBSD FreeBSD 5.3 FreeBSD FreeBSD 5.2.1 -RELEASE FreeBSD FreeBSD 5.2 -RELENG FreeBSD FreeBSD 5.2 -RELEASE FreeBSD FreeBSD 5.2 FreeBSD FreeBSD 5.1 -RELENG FreeBSD FreeBSD 5.1 -RELEASE/Alpha FreeBSD FreeBSD 5.1 -RELEASE-p5 FreeBSD FreeBSD 5.1 -RELEASE FreeBSD FreeBSD 5.1 FreeBSD FreeBSD 5.0 -RELENG FreeBSD FreeBSD 5.0 -RELEASE-p14 FreeBSD FreeBSD 5.0 alpha FreeBSD FreeBSD 5.0 FreeBSD FreeBSD 4.11 -STABLE FreeBSD FreeBSD 4.11 -RELENG FreeBSD FreeBSD 4.11 -RELEASE-p3 FreeBSD FreeBSD 4.10 -RELENG FreeBSD FreeBSD 4.10 -RELEASE-p8 FreeBSD FreeBSD 4.10 -RELEASE FreeBSD FreeBSD 4.10 FreeBSD FreeBSD 4.9 -RELENG FreeBSD FreeBSD 4.9 -PRERELEASE FreeBSD FreeBSD 4.9 FreeBSD FreeBSD 4.8 -RELENG FreeBSD FreeBSD 4.8 -RELEASE-p7 FreeBSD FreeBSD 4.8 -PRERELEASE FreeBSD FreeBSD 4.8 FreeBSD FreeBSD 4.7 -STABLE FreeBSD FreeBSD 4.7 -RELENG FreeBSD FreeBSD 4.7 -RELEASE-p17 FreeBSD FreeBSD 4.7 -RELEASE FreeBSD FreeBSD 4.7 FreeBSD FreeBSD 4.6.2 FreeBSD FreeBSD 4.6 -STABLE FreeBSD FreeBSD 4.6 -RELENG FreeBSD FreeBSD 4.6 -RELEASE-p20 FreeBSD FreeBSD 4.6 -RELEASE |
| Not Vulnerable: | |
Discussion
FreeBSD IIR(4) Driver Incorrect Permissions Vulnerability
FreeBSD iir(4) driver is prone to an incorrect permissions vulnerability.
A local unprivileged attacker can gain access to a device and carry out ioctl calls. This can allow local attackers to delete or disclose potentially sensitive data.
FreeBSD iir(4) driver is prone to an incorrect permissions vulnerability.
A local unprivileged attacker can gain access to a device and carry out ioctl calls. This can allow local attackers to delete or disclose potentially sensitive data.
Exploit / POC
FreeBSD IIR(4) Driver Incorrect Permissions Vulnerability
An exploit is not required.
An exploit is not required.
Solution / Fix
FreeBSD IIR(4) Driver Incorrect Permissions Vulnerability
Solution:
The vendor has released advisory FreeBSD-SA-05:06.iir including patches to address this issue in FreeBSD 4.10, 4.11, and 5.3 systems. Please see the referenced advisory for more information.
FreeBSD FreeBSD 4.10 -RELEASE-p8
FreeBSD FreeBSD 4.10 -RELEASE
FreeBSD FreeBSD 4.10 -RELENG
FreeBSD FreeBSD 4.10
FreeBSD FreeBSD 4.11 -RELEASE-p3
FreeBSD FreeBSD 4.11 -RELENG
FreeBSD FreeBSD 4.11 -STABLE
FreeBSD FreeBSD 5.3
FreeBSD FreeBSD 5.3 -RELEASE
FreeBSD FreeBSD 5.3 -RELENG
FreeBSD FreeBSD 5.3 -STABLE
Solution:
The vendor has released advisory FreeBSD-SA-05:06.iir including patches to address this issue in FreeBSD 4.10, 4.11, and 5.3 systems. Please see the referenced advisory for more information.
FreeBSD FreeBSD 4.10 -RELEASE-p8
-
FreeBSD iir.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:06/iir.patch
FreeBSD FreeBSD 4.10 -RELEASE
-
FreeBSD iir.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:06/iir.patch
FreeBSD FreeBSD 4.10 -RELENG
-
FreeBSD iir.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:06/iir.patch
FreeBSD FreeBSD 4.10
-
FreeBSD iir.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:06/iir.patch
FreeBSD FreeBSD 4.11 -RELEASE-p3
-
FreeBSD iir.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:06/iir.patch
FreeBSD FreeBSD 4.11 -RELENG
-
FreeBSD iir.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:06/iir.patch
FreeBSD FreeBSD 4.11 -STABLE
-
FreeBSD iir.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:06/iir.patch
FreeBSD FreeBSD 5.3
-
FreeBSD iir.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:06/iir.patch
FreeBSD FreeBSD 5.3 -RELEASE
-
FreeBSD iir.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:06/iir.patch
FreeBSD FreeBSD 5.3 -RELENG
-
FreeBSD iir.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:06/iir.patch
FreeBSD FreeBSD 5.3 -STABLE
-
FreeBSD iir.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:06/iir.patch