Vulnerabilities > CVE-2006-6657 - Local Security vulnerability in NetBSD

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

netbsd

NVD

Published: 2006-12-20

Updated: 2008-09-05

Summary

The if_clone_list function in NetBSD-current before 20061027, NetBSD 3.0 and 3.0.1 before 20061027, and NetBSD 2.x before 20061119 allows local users to read potentially sensitive, uninitialized stack memory via unspecified vectors.

Vulnerable Configurations

Part	Description	Count
OS	Netbsd Netbsd Netbsd 2.0 Netbsd Netbsd 2.1 Netbsd Netbsd 3.0 Netbsd Netbsd 3.0.1	4

References

ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2006-025.txt.asc
http://securitytracker.com/id?1017292