CVE-2016-6253
mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on the user mailbox.
| Software | From | Fixed in |
|---|---|---|
| netbsd / netbsd | 6.1.1 | 6.1.1.x |
| netbsd / netbsd | 6.1.3 | 6.1.3.x |
| netbsd / netbsd | 6.0 | 6.0.x |
| netbsd / netbsd | 6.1.4 | 6.1.4.x |
| netbsd / netbsd | 6.0.4 | 6.0.4.x |
| netbsd / netbsd | 6.0.6 | 6.0.6.x |
| netbsd / netbsd | 7.0 | 7.0.x |
| netbsd / netbsd | 6.0.2 | 6.0.2.x |
| netbsd / netbsd | 6.0.5 | 6.0.5.x |
| netbsd / netbsd | 6.1.2 | 6.1.2.x |
| netbsd / netbsd | 6.0.1 | 6.0.1.x |
| netbsd / netbsd | 6.1.5 | 6.1.5.x |
| netbsd / netbsd | 6.0.3 | 6.0.3.x |
| netbsd / netbsd | 6.1 | 6.1.x |
- http://akat1.pl/?id=2
- http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2016-006.txt.asc
- http://packetstormsecurity.com/files/138021/NetBSD-mail.local-8-Local-Root.html
- http://www.rapid7.com/db/modules/exploit/unix/local/netbsd_mail_local
- http://www.securityfocus.com/bid/92101
- http://www.securitytracker.com/id/1036429
- https://www.exploit-db.com/exploits/40141/
- https://www.exploit-db.com/exploits/40385/
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime