FreeBSD rmuser Password Hash Disclosure

2001-09-04T00:00:00
ID OSVDB:1947
Type osvdb
Reporter dynamo(dynamo@harvard.net)
Modified 2001-09-04T00:00:00

Description

Vulnerability Description

FreeBSD contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a malicious user can view the master.passwd file while root is running rmuser, which will disclose password hashes resulting in a loss of confidentiality.

Solution Description

Upgrade to version 4.3-STABLE or the RELENG_4_3 security branch, dated after the respective correction dates, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): use the pw(8) utility to remove users instead of rmuser.

Also, FreeBSD has released a patch.

Short Description

FreeBSD contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a malicious user can view the master.passwd file while root is running rmuser, which will disclose password hashes resulting in a loss of confidentiality.

References:

Vendor URL: http://www.freebsd.org Vendor Specific Advisory URL Security Tracker: 1002320 Security Tracker: 1002366 Mail List Post: http://archives.neohapsis.com/archives/freebsd/2001-09/0004.html ISS X-Force ID: 7086 CVE-2001-1017 Bugtraq ID: 3282