CVE-2007-1677

Name of the Vulnerable Software and Affected Versions: NetBSD versions 2.0 through 4.0 BETA2 NetBSD-current before 20070329

Description: The issue concerns buffer overflows in the ISO network protocol support within the NetBSD kernel. This can be exploited by local users to execute arbitrary code by passing long parameters to certain functions. For example, a long sockaddr structure argument can be passed to the clnp route function to achieve this.

Recommendations: For NetBSD versions 2.0 through 4.0 BETA2, update to a version after 4.0 BETA2 to resolve the issue. For NetBSD-current before 20070329, update to a version after 20070329 to resolve the issue. As a temporary workaround, consider restricting access to the clnp route function until a patch is available.