Info

Disclosure

Apr 15, 2005

Discovery

Unknown

Dates

Exploit

Apr 15, 2005

Solution

Unknown

Description

FreeBSD contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a local user generates a list of network interfaces and the "SIOCGICONF" ioctl fails to zero out the buffer, which may cause up to 12 bytes of potentially sensitive information from previously cached kernel memory to be disclosed to the user process, resulting in a loss of confidentiality.

Classification

Location: Local Access Required
Attack Type: Information Disclosure
Impact: Loss of Confidentiality
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Upgrade to version 5.4 or higher, as it has been reported to fix this vulnerability. In addition, the following patches have been released for some older versions. 2005-04-15 01:52:25 UTC (RELENG_5_3, 5.3-RELEASE-p9) 2005-04-15 01:52:40 UTC (RELENG_4, 4.11-STABLE) 2005-04-15 01:52:57 UTC (RELENG_4_11, 4.11-RELEASE-p3) 2005-04-15 01:53:14 UTC (RELENG_4_10, 4.10-RELEASE-p8)

Products

FreeBSD Project	FreeBSD	4.x
		5.0
		5.1
		5.2
		5.3
		5.4
		5.3-RELEASE-p9
		4.11-STABLE
		4.11-RELEASE-p3
		4.10-RELEASE-p8

References

Security Tracker: 1013719
Bugtraq ID: 13191
SCIP VulDB ID: 1371 1851
Secunia Advisory ID: 14959
CVE ID: 2005-1126 (see also: NVD)
ISS X-Force ID: 20114
VUPEN Advisory: ADV-2005-0357
Other Advisory URL: ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:04.ifconf.asc http://www.niscc.gov.uk/niscc/docs/br-20050415-00321.html?lang=en
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-04/0217.html
Vendor Specific Advisory URL: http://docs.info.apple.com/article.html?artnum=302763
Vendor URL: http://www.freebsd.org/

Credit

Ilja van Sprundel -

Direct URL: http://osvdb.org/15514

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

FreeBSD Project

FreeBSD

References

Credit