CVE-2016-6253

high-risk
Published 2017-01-20

mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on the user mailbox.

Do I need to act?

~
7.3% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
2 public exploits available
40141, 40385
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.8/10 High
LOCAL / LOW complexity

Affected Products (14)

Affected Vendors

Netbsd

References (16)

Exploit http://akat1.pl/?id=2
Vendor Advisory http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2016-006.txt.asc
Exploit http://packetstormsecurity.com/files/138021/NetBSD-mail.local-8-Local-Root.html
Exploit http://www.rapid7.com/db/modules/exploit/unix/local/netbsd_mail_local
Third Party Advisory http://www.securityfocus.com/bid/92101
Third Party Advisory http://www.securitytracker.com/id/1036429
Exploit https://www.exploit-db.com/exploits/40141/
Exploit https://www.exploit-db.com/exploits/40385/
Exploit http://akat1.pl/?id=2
Vendor Advisory http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2016-006.txt.asc
Exploit http://packetstormsecurity.com/files/138021/NetBSD-mail.local-8-Local-Root.html
Exploit http://www.rapid7.com/db/modules/exploit/unix/local/netbsd_mail_local
Third Party Advisory http://www.securityfocus.com/bid/92101
Third Party Advisory http://www.securitytracker.com/id/1036429
Exploit https://www.exploit-db.com/exploits/40141/
Exploit https://www.exploit-db.com/exploits/40385/
59
/ 100
high-risk
Severity 24/34 · High
Exploitability 17/34 · Moderate
Exposure 18/34 · Moderate