Vulnerabilities > CVE-2006-2655 - Unspecified vulnerability in Freebsd

CVSS 6.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

freebsd

NVD

Published: 2006-06-02

Updated: 2017-07-20

Summary

The build process for ypserv in FreeBSD 5.3 up to 6.1 accidentally disables access restrictions when using the /var/yp/securenets file, which allows remote attackers to bypass intended access restrictions.

Vulnerable Configurations

Part	Description	Count
OS	Freebsd Freebsd Freebsd 5.3 Freebsd Freebsd 5.4 Freebsd Freebsd 6.0 Freebsd Freebsd 6.1	15

References

http://secunia.com/advisories/20389
http://security.freebsd.org/advisories/FreeBSD-SA-06:15.ypserv.asc
http://securitytracker.com/id?1016193
http://www.osvdb.org/25852
http://www.securityfocus.com/bid/18204
https://exchange.xforce.ibmcloud.com/vulnerabilities/26792