PT-2001-1425 · Freebsd · Freebsd

Published

2001-05-03

Updated

2017-10-10

CVE-2001-0196

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 4.x and earlier

Description: The issue concerns the inetd ident server in FreeBSD, which does not properly set group permissions. This allows remote attackers to read the first 16 bytes of files that are accessible by the wheel group.

Recommendations: For versions 4.x and earlier, update to a version that properly sets group permissions for the inetd ident server, or consider disabling the ident server as a temporary workaround to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-0196

Affected Products

Freebsd

PT-2001-1425 · Freebsd · Freebsd

CVE-2001-0196

Related Identifiers

Affected Products

References · 5