Title: NetBSD ARP Cross Network Vulnerability
Severity: MODERATE
Description:
ARP is a protocol used to dynamically obtain Network Layer to Link Layer address tranlation services. A vulnerability in NetBSD's ARP implementation allows rouge hosts attached to a network to which a NetBSD multihomed host is attached to insert ARP table entries for hosts in the other networks to which the NetBSD host is attached. The NetBSD host fails to check the address information of incoming ARP packets to ensure that is corresponds to one of the address of the interface on which the packet arrived.
Affected Products:
- NetBSD NetBSD 1.3.0
- NetBSD NetBSD 1.3.1
- NetBSD NetBSD 1.3.2
- NetBSD NetBSD 1.3.3
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
