NetBSD Multi-homed Host Arbitrary ARP Packet Modification

1999-05-21T00:00:00
ID OSVDB:6540
Type osvdb
Reporter Olaf "Rhialto" Seibert()
Modified 1999-05-21T00:00:00

Description

Vulnerability Description

NetBSD contains a flaw that may allow a malicious user to hijack a connection. The issue is triggered when the address information of incoming ARP packets is not checked to ensure that it corresponds to one of the addresses of the interface on which the packet arrived. It is possible that the flaw may allow suppression or redirection of traffic from the attacked host to a different destination, resulting in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, NetBSD has released a patch to address this vulnerability.

Short Description

NetBSD contains a flaw that may allow a malicious user to hijack a connection. The issue is triggered when the address information of incoming ARP packets is not checked to ensure that it corresponds to one of the addresses of the interface on which the packet arrived. It is possible that the flaw may allow suppression or redirection of traffic from the attacked host to a different destination, resulting in a loss of integrity.

References:

Vendor URL: http://www.netbsd.org Vendor Specific Advisory URL Related OSVDB ID: 6539 ISS X-Force ID: 2202 CVE-1999-0763 Bugtraq ID: 264