Tom's Hardware > Forum > Linux/Free BSD > Linux/Free BSD General Discussion > Pigs could yet fly -- OpenBSD's Secuirty hole??

Pigs could yet fly -- OpenBSD's Secuirty hole??

Forum Linux/Free BSD : Linux/Free BSD General Discussion - Pigs could yet fly -- OpenBSD's Secuirty hole??

Tom's Hardware: Over 1.4 million members in 6 different countries available to answer all your high-tech questions. Sign up now! Its free!
Ask the community Add a reply
Word :    Username :           
 
audiovoodoo   03-15-2007 at 08:56:40 PM

Quote :

Vulnerability Description
The OpenBSD kernel contains a memory corruption vulnerability in the code that handles IPv6 packets. Exploitation of this vulnerability can result in:

1) Remote execution of arbitrary code at the kernel level on the vulnerable systems (complete system compromise), or;

2) Remote denial of service attacks against vulnerable systems (system crash due to a kernel panic)

The issue can be triggered by sending a specially crafted IPv6 fragmented packet.

OpenBSD systems using default installations are vulnerable because the default pre-compiled kernel binary (GENERIC) has IPv6 enabled and OpenBSD's firewall does not filter inbound IPv6 packets in its default configuration.

However, in order to exploit a vulnerable system an attacker needs to be able to inject fragmented IPv6 packets on the target system's local network. This requires direct physical/logical access to the target's local network -in which case the attacking system does not need to have a working IPv6 stack- or the ability to route or tunnel IPv6 packets to the target from a remote network.

Vulnerable Packages

OpenBSD 4.1 prior to Feb. 26th, 2006.
OpenBSD 4.0 Current
OpenBSD 4.0 Stable
OpenBSD 3.9
OpenBSD 3.8
OpenBSD 3.6
OpenBSD 3.1

All other releases that implement the IPv6 protocol stack may be vulnerable.



A rare day.. I don't think I've seen a BSD hole reported in a very long time.. The fix is already out. Read more here or check out the slashdot take on it.

Add a reply
Sponsored Links
Register or log in to remove.
knightrous   03-16-2007 at 12:08:11 AM
- 0 +

Imagine if Microsoft identified and fixed security issues this fast... They truly would come damn close to ruling the world! :)

Reply to knightrous
audiovoodoo   03-16-2007 at 12:49:02 AM
- 0 +

I'd have some post count if I did this in the XP forums :wink:

It is always nice to see the fix the same day you find out about the bug. I think pride also comes into play here. BSD rightfully has a rep as very secure, just goes to show that nothing is perfect...

Reply to audiovoodoo
choknuti   03-18-2007 at 10:47:05 PM
- 0 +

Doesn't NASA use OpenBSD? Good that they are fast on the fix. I would hate to c the space station come down due to some kids work :)

Reply to choknuti
bmouring   03-19-2007 at 06:55:23 AM
- 0 +

Hopefully anyone at NASA (or anywhere else, really) who was in charge of OpenBSD systems such as this would disable/block the IPv6 network layer as the US won't be using that until it's dragged kicking and screaming into it.

....hopefully being the operative word

Reply to bmouring
choknuti   03-19-2007 at 10:21:15 AM
- 0 +

Quote :

as the US won't be using that until it's dragged kicking and screaming into it.



I like the way you say that :D At least get them to adopt metric :( let alone IPv6

Reply to choknuti
Ask the community Add a reply
Tom's Hardware > Forum > Linux/Free BSD > Linux/Free BSD General Discussion > Pigs could yet fly -- OpenBSD's Secuirty hole??
Go to:

There are 1280 identified and unidentified users. To see the list of identified users, Click here.

Forum map
Bestofmedia Forum ©
2000-2009 Bestofmedia Group
Page generated in 0.275 seconds
Please mind

You are about to answer a thread that has been inactive for more than 6 months.
If you still wish to proceed, please ensure that your posting is original and does not duplicate or overlap any prior responses to this thread.

Add a reply Cancel
Sponsored links
  • Ask the community now
  • Publish
Ad
They won a badge
Join us in greeting them