CVE-2013-3077

Name of the Vulnerable Software and Affected Versions FreeBSD versions 8.3 through 9.2-PRERELEASE

Description The issue is related to multiple integer overflows in the IP MSFILTER and IPV6 MSFILTER features within the multicast implementation in the kernel. This affects files sys/netinet/in mcast.c and sys/netinet6/in6 mcast.c, allowing local users to bypass restrictions on kernel-memory read and write operations. As a result, users can gain privileges through vectors involving a large number of source-filter entries.

Recommendations For FreeBSD versions 8.3 through 9.2-PRERELEASE, consider restricting access to the multicast implementation in the kernel until a patch is available. As a temporary workaround, limit the number of source-filter entries to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.