FreeBSD KAME Project IPv6 implementation denial of service
| freebsd-ipv6-dos (15662) |  Medium Risk |
Description:
The KAME Project IPv6 implementation in FreeBSD fails to properly handle certain IPv6 socket options within the setsockopt function. A local attacker could exploit this vulnerability to obtain sensitive information or cause a system panic.
Consequences:
Denial of Service
Remedy:
Upgrade to the latest version of FreeBSD (RELENG_5_2 or 5.2.1-RELEASE-p4 security branch dated later than 2004-03-29), as listed in FreeBSD Security Advisory FreeBSD-SA-04:06.ipv6. See References.
—OR—
Apply the patch for this vulnerability, as listed in FreeBSD Security Advisory FreeBSD-SA-04:06.ipv6. See References.
References:
- FreeBSD Security Advisory FreeBSD-SA-04:06.ipv6: setsockopt(2) IPv6 sockets input validation error.
- BID-9992: FreeBSD IPv6 Socket Options Handling Local Memory Disclosure Vulnerability
- CVE-2004-0370: The setsockopt call in the KAME Project IPv6 implementation, as used in FreeBSD 5.2, does not properly handle certain IPv6 socket options, which could allow attackers to read kernel memory and cause a system panic.
- SA11233: FreeBSD IPv6 "setsockopt()" Input Validation Vulnerability
Platforms Affected:
- FreeBSD FreeBSD 5.2
Reported:
Mar 29, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net