Spoofing attack in NetBSD utmp_update
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | N/A |
| CWE-ID | CWE-451 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software Subscribe |
NetBSD Operating systems & Components / Operating system |
| Vendor | NetBSD Foundation, Inc |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Spoofing attack
EUVDB-ID: #VU87316
Risk: Low
CVSSv3.1: 2.9 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: N/A
CWE-ID:
CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform spoofing attack.
The vulnerability exists due to incorrect processing of user-supplied data within the utmp_update(8) command when handling hostnames. A local user can inject specially crafted data into the utmpx(5) database and spoof content of log files or display arbitrary output for tools, which display hostnames from utmpx(5) databases such us w(1) or who(1).
Install updates from vendor's website.
Vulnerable software versionsNetBSD: 8.0 - 10
External linkshttp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2024-001.txt.asc
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
