CVE-2016-6253
CVE-2016-6253
Patch soon. has a working public exploit.
Vexday Risk Score
38Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 3.6%KEV nãoPoC públicaNuclei —Metasploit simPatch referenciado
Lifecycle
07 Jul 2016Metasploit module available
21 Jul 2016Public PoC
20 Jan 2017Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on the user mailbox.
Affected products
n/a · n/apublic PoCs found — 5
cve_referencepacketstormsecurity.com/files/138021/NetBSD-mail.local-8-Local-Root.htmlunverifiedcve_referencewww.exploit-db.com/exploits/40141/unverifiedcve_referencewww.exploit-db.com/exploits/40385/unverifiedexploitdbwww.exploit-db.com/exploits/40141unverifiedexploitdbwww.exploit-db.com/exploits/40385unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://akat1.pl/?id=2http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2016-006.txt.aschttp://packetstormsecurity.com/files/138021/NetBSD-mail.local-8-Local-Root.htmlhttps://www.exploit-db.com/exploits/40141/https://www.exploit-db.com/exploits/40385/http://www.rapid7.com/db/modules/exploit/unix/local/netbsd_mail_localhttp://www.securityfocus.com/bid/92101http://www.securitytracker.com/id/1036429