FreeBSD YPServ Inoperative Access Control Vulnerability
BID:18204
CVE-2006-2655 |Info
FreeBSD YPServ Inoperative Access Control Vulnerability
| Bugtraq ID: | 18204 |
| Class: | Design Error |
| CVE: |
CVE-2006-2655 |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 01 2006 12:00AM |
| Updated: | Jun 01 2006 09:12PM |
| Credit: | Hokan is credited with the discovery of this vulnerability. |
| Vulnerable: |
FreeBSD FreeBSD 6.0 -STABLE FreeBSD FreeBSD 6.0 -RELEASE FreeBSD FreeBSD 5.4 -RELENG FreeBSD FreeBSD 5.4 -RELEASE FreeBSD FreeBSD 5.4 -PRERELEASE FreeBSD FreeBSD 5.3 -STABLE FreeBSD FreeBSD 5.3 -RELENG FreeBSD FreeBSD 5.3 -RELEASE FreeBSD FreeBSD 5.3 FreeBSD FreeBSD 5.2.1 -RELEASE FreeBSD FreeBSD 5.2 -RELENG FreeBSD FreeBSD 5.2 -RELEASE FreeBSD FreeBSD 5.2 FreeBSD FreeBSD 5.1 -RELENG FreeBSD FreeBSD 5.1 -RELEASE/Alpha FreeBSD FreeBSD 5.1 -RELEASE-p5 FreeBSD FreeBSD 5.1 -RELEASE FreeBSD FreeBSD 5.1 FreeBSD FreeBSD 5.0 -RELENG FreeBSD FreeBSD 5.0 -RELEASE-p14 FreeBSD FreeBSD 5.0 alpha FreeBSD FreeBSD 5.0 FreeBSD FreeBSD 6.1 -STABLE FreeBSD FreeBSD 6.1 -RELEASE FreeBSD FreeBSD 5.4-STABLE |
| Not Vulnerable: | |
Discussion
FreeBSD YPServ Inoperative Access Control Vulnerability
FreeBSD ypserv is prone to a vulnerability regarding inoperative access controls.
The problem is due to a failure in ypserv to properly enforce access control restrictions.
This issue results in a false sense of security, since intended access controls aren't properly enforced. Successful exploits may result in the disclosure of sensitive information.
FreeBSD ypserv is prone to a vulnerability regarding inoperative access controls.
The problem is due to a failure in ypserv to properly enforce access control restrictions.
This issue results in a false sense of security, since intended access controls aren't properly enforced. Successful exploits may result in the disclosure of sensitive information.
Exploit / POC
FreeBSD YPServ Inoperative Access Control Vulnerability
This issue can be exploited using standard network tools.
This issue can be exploited using standard network tools.
Solution / Fix
FreeBSD YPServ Inoperative Access Control Vulnerability
Solution:
FreeBSD has released patches to address this issue.
FreeBSD FreeBSD 6.1 -RELEASE
FreeBSD FreeBSD 5.4-STABLE
FreeBSD FreeBSD 6.1 -STABLE
FreeBSD FreeBSD 5.3 -RELEASE
FreeBSD FreeBSD 5.3 -RELENG
FreeBSD FreeBSD 5.3
FreeBSD FreeBSD 5.3 -STABLE
FreeBSD FreeBSD 5.4 -PRERELEASE
FreeBSD FreeBSD 5.4 -RELEASE
FreeBSD FreeBSD 5.4 -RELENG
FreeBSD FreeBSD 6.0 -RELEASE
FreeBSD FreeBSD 6.0 -STABLE
Solution:
FreeBSD has released patches to address this issue.
FreeBSD FreeBSD 6.1 -RELEASE
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch
FreeBSD FreeBSD 5.4-STABLE
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch
FreeBSD FreeBSD 6.1 -STABLE
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch
FreeBSD FreeBSD 5.3 -RELEASE
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch
FreeBSD FreeBSD 5.3 -RELENG
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch
FreeBSD FreeBSD 5.3
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch
FreeBSD FreeBSD 5.3 -STABLE
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch
FreeBSD FreeBSD 5.4 -PRERELEASE
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch
FreeBSD FreeBSD 5.4 -RELEASE
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch
FreeBSD FreeBSD 5.4 -RELENG
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch
FreeBSD FreeBSD 6.0 -RELEASE
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch
FreeBSD FreeBSD 6.0 -STABLE
-
FreeBSD ypserv.patch
http://security.FreeBSD.org/patches/SA-06:15/ypserv.patch