IDC SFX2100 Satellite Receivers World-Writable DNS Configuration Vulnerability

A vulnerability exists in the IDC SFX2100 satellite receivers, which are used by organizations such as the US Department of Defense and the European Space Agency. The issue arises from the receivers setting the '/etc/resolv.conf' file to be world-writable, allowing any local user to tamper with the DNS resolver. This could lead to unauthorized redirection of network communications, facilitate man-in-the-middle attacks, and cause denial-of-service conditions.

Impact

Exploitation of this vulnerability allows for unauthorized modification of the DNS resolver configuration, potentially leading to redirected network communications, man-in-the-middle attacks, and denial-of-service conditions.

Reproduction

The vulnerability can be reproduced by accessing the SFX2100 receiver and verifying the permissions of the '/etc/resolv.conf' file, which is set to be world-writable. This can be done by using the 'stat' command to check the file's permission settings.