Slashdot Mirror


Remote Exploit Discovered for OpenBSD

An anonymous reader writes "OpenBSD is known for its security policies, and for its boast of "only one remote exploit in over 10 years". Well, make that two, because Core Security has found a remotely exploitable buffer overflow in the OpenBSD kernel. Upgrade your firewalls as soon as possible."

3 of 338 comments (clear)

  1. Well, I guess that confirms it... by bckrispi · · Score: -1, Redundant

    BSD is dead.

    --
    Xenon, where's my money? -Borno
  2. Re:Well done, the OpenBSD team. by EvanED · · Score: 0, Redundant

    Could this be a sign of overconfidence in the Linux community?

    Nope.

    Now, it might be a sign of overconfidence in the BSD community...

    (But in reality almost everyone has had moments like this.)

  3. The juicy bits by sanermind · · Score: -1, Redundant

    # 2007-02-26: OpenBSD team communicates that the issue is specific to OpenBSD. OpenBSD no longer uses the term "vulnerability" when referring to bugs that lead to a remote denial of service attack, as opposed to bugs that lead to remote control of vulnerable systems to avoid oversimplifying ("pablumfication") the use of the term.

    # 2007-02-26: Core email sent to OpenBSD team explaining that Core considers a remote denial of service a security issue and therefore does use the term "vulnerability" to refer to it and that although remote code execution could not be proved in this specific case, the possibility should not be discarded. Core requests details about the bug and if possible an analysis of why the OpenBSD team may or may not consider the bug exploitable for remote code execution.

    # 2007-02-28: OpenBSD team indicates that the bug results in corruption of mbuf chains and that only IPv6 code uses that mbuf code, there is no user data in the mbuf header fields that become corrupted and it would be surprising to be able to run arbitrary code using a bug so deep in the mbuf code. The bug simply leads to corruption of the mbuf chain.

    # 2007-03-05: Core develops proof of concept code that demonstrates remote code execution in the kernel context by exploiting the mbuf overflow.

    Pwned!!!! ...ahem
    --

    ---
    the pen is mightier than the sword, the sword is mightier than the court, the court is mightier than the pen.