OSVDB ID: 84088

Title: NetBSD telnetd encrypt.c encrypt_keyid Function Encryption keyid Handling Remote Overflow

Info

Disclosure

Jun 27, 2012

Discovery

Unknown

Dates

Exploit

Jun 26, 2012

Solution

Unknown

Description

NetBSD is prone to an overflow condition related to telnetd. The encrypt_keyid function in encrypt.c fails to properly sanitize user-supplied input resulting in an overflow. With a specially crafted keyid encryption value, a remote attacker can potentially execute arbitrary code or cause a denial of service.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Solution Unknown
Exploit: Exploit Public
Disclosure: Uncoordinated Disclosure

Solution

OSVDB is not aware of a solution for this vulnerability.

Products

NetBSD Foundation, Inc.	NetBSD	5.0
		5.1
		4.0

References

Exploit Database: 19520
Related OSVDB ID: 78020
Mail List Post: http://seclists.org/fulldisclosure/2012/Jun/404
Vendor Specific Solution URL: http://www.netbsd.org/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/84088

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

NetBSD Foundation, Inc.

NetBSD

References

Credit