CVE-2009-2208

CVE-2009-2208

EPSS 0.4%

FreeBSD 6.3, 6.4, 7.1, and 7.2 does not enforce permissions on the SIOCSIFINFO_IN6 IOCTL, which allows local users to modify or disable IPv6 network interfaces, as demonstrated by modifying the MTU.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/35410 http://security.FreeBSD.org/advisories/FreeBSD-SA-09:10.ipv6.asc https://exchange.xforce.ibmcloud.com/vulnerabilities/51044 http://www.securityfocus.com/bid/35285 http://www.securitytracker.com/id?1022367