NetBSD netstat Kernel Memory Disclosure

1999-02-09T00:00:00
ID OSVDB:7571
Type osvdb
Reporter Charles Hannum(root@ihack.net), Michael Graff(explorer@netbsd.org)
Modified 1999-02-09T00:00:00

Description

Vulnerability Description

NetBSD's netstat program contains a flaw that may lead to an unauthorized information disclosure. The kernel protocol control block code fails to properly checks that memory being displayed is a protocol control block. The issue is triggered when the code which allows printing of kernel protocol control blocks is improperly accessed, which will disclose portions of kernel memory to a non-root user, resulting in a loss of confidentiality.

Technical Description

This vulnerability affects all versions of NetBSD-current that were obtained between 19980603 and 19990208 from the NetBSD source tree.

Solution Description

Upgrade to a NetBSD-current version 19990208 or newer, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by applying the vendor-supplied patch, or by disabling netstat for non-root users.

Short Description

NetBSD's netstat program contains a flaw that may lead to an unauthorized information disclosure. The kernel protocol control block code fails to properly checks that memory being displayed is a protocol control block. The issue is triggered when the code which allows printing of kernel protocol control blocks is improperly accessed, which will disclose portions of kernel memory to a non-root user, resulting in a loss of confidentiality.

References:

Vendor URL: http://www.NetBSD.ORG/ Vendor Specific Solution URL: ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/patches/19990208-netstat Vendor Specific Advisory URL Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1999_1/0536.html ISS X-Force ID: 1739 CVE-1999-0367