FreeBSD inetd ident wheel Group Arbitrary Local File Access
Local Access Required
Loss of Confidentiality
Patch / RCS
FreeBSD contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when inetd incorrectly sets group privileges on child processes, and when an ident request is received, the process is assigned privileges of the wheel (root group), which will disclose the first 16 bytes of any wheel-accessible file resulting in a loss of confidentiality.
Upgrade to version FreeBSD system to 3.5-STABLE or 4.2-STABLE after the correction date, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): disable the internal ident server, if enabled: comment out all lines beginning with "auth" in /etc/inetd.conf, then restart inetd by sending it a SIGHUP:
#killall -HUP inetd