#VU51106 Permissions, Privileges, and Access Controls in FreeBSD
Vulnerability identifier: #VU51106
Vulnerability risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-264
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
FreeBSD
Operating systems & Components /
Operating system
Vendor: FreeBSD Foundation
Description
The vulnerability allows a remote attacker to escalate privileges on the system.
The vulnerability exists due to regression in login.access(5) rule processor, which triggered the rules to be failed in certain cases and deny access rules can be ignored. An attacker can bypass defined access policy and gain unauthorized access to the system, even when the system is configured to deny it.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
FreeBSD: 11.0 - 13.0
External links
http://www.freebsd.org/security/advisories/FreeBSD-SA-21:03.pam_login_access.asc
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
