CVE-2009-2208
First published: Wed Jun 24 2009(Updated: )
FreeBSD 6.3, 6.4, 7.1, and 7.2 does not enforce permissions on the SIOCSIFINFO_IN6 IOCTL, which allows local users to modify or disable IPv6 network interfaces, as demonstrated by modifying the MTU.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| FreeBSD Kernel | =6.4-release_p2 | |
| FreeBSD Kernel | =6.4 | |
| FreeBSD Kernel | =6.3 | |
| FreeBSD Kernel | =6.4-release_p5 | |
| FreeBSD Kernel | =6.3_releng | |
| FreeBSD Kernel | =7.1-release-p2 | |
| FreeBSD Kernel | =7.1-rc1 | |
| FreeBSD Kernel | =6.4-release | |
| FreeBSD Kernel | =7.1-release-p1 | |
| FreeBSD Kernel | =7.1-stable | |
| FreeBSD Kernel | =6.3-release_p9 | |
| FreeBSD Kernel | =7.1-release-p6 | |
| FreeBSD Kernel | =6.4-stable | |
| FreeBSD Kernel | =6.4-release_p4 | |
| FreeBSD Kernel | =6.3-release_p6 | |
| FreeBSD Kernel | =7.2-pre-release | |
| FreeBSD Kernel | =7.1 | |
| FreeBSD Kernel | =7.2 | |
| FreeBSD Kernel | =6.3-release_p10 | |
| FreeBSD Kernel | =7.1-pre-release | |
| FreeBSD Kernel | =6.4-release_p3 | |
| FreeBSD Kernel | =7.1-release-p4 | |
| FreeBSD Kernel | =6.3-release_p11 | |
| FreeBSD Kernel | =6.3-release_p8 | |
| FreeBSD Kernel | =7.1-release-p5 | |
| FreeBSD Kernel | =7.2-stable |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2009-2208?
CVE-2009-2208 has a medium severity level due to its potential to allow unauthorized modification of IPv6 network interfaces.
How do I fix CVE-2009-2208?
To fix CVE-2009-2208, upgrade to a patched version of FreeBSD that enforces proper permissions for the SIOCSIFINFO_IN6 IOCTL.
Who is affected by CVE-2009-2208?
CVE-2009-2208 affects local users on FreeBSD versions 6.3 through 7.2.
What can an attacker do with CVE-2009-2208?
An attacker exploiting CVE-2009-2208 can modify or disable IPv6 network interfaces, which could lead to network disruption.
When was CVE-2009-2208 discovered?
CVE-2009-2208 was disclosed in July 2009.
- agent/type
- agent/remedy
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/freebsd
- canonical/freebsd kernel
- version/freebsd kernel/6.4-release_p2
- version/freebsd kernel/6.4
- version/freebsd kernel/6.3
- version/freebsd kernel/6.4-release_p5
- version/freebsd kernel/6.3_releng
- version/freebsd kernel/7.1-release-p2
- version/freebsd kernel/7.1-rc1
- version/freebsd kernel/6.4-release
- version/freebsd kernel/7.1-release-p1
- version/freebsd kernel/7.1-stable
- version/freebsd kernel/6.3-release_p9
- version/freebsd kernel/7.1-release-p6
- version/freebsd kernel/6.4-stable
- version/freebsd kernel/6.4-release_p4
- version/freebsd kernel/6.3-release_p6
- version/freebsd kernel/7.2-pre-release
- version/freebsd kernel/7.1
- version/freebsd kernel/7.2
- version/freebsd kernel/6.3-release_p10
- version/freebsd kernel/7.1-pre-release
- version/freebsd kernel/6.4-release_p3
- version/freebsd kernel/7.1-release-p4
- version/freebsd kernel/6.3-release_p11
- version/freebsd kernel/6.3-release_p8
- version/freebsd kernel/7.1-release-p5
- version/freebsd kernel/7.2-stable