SCO OpenServer Enable And Disable Multiple Local Buffer Overflow Vulnerabilities
BID:12474
Info
SCO OpenServer Enable And Disable Multiple Local Buffer Overflow Vulnerabilities
| Bugtraq ID: | 12474 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2004-1131 |
| Remote: | No |
| Local: | Yes |
| Published: | Feb 08 2005 12:00AM |
| Updated: | Feb 21 2007 06:26PM |
| Credit: | The individual or individuals responsible for the discovery of this issue are currently unknown; the vendor disclosed this issue. |
| Vulnerable: |
SCO Open Server 5.0.7 SCO Open Server 5.0.6 a SCO Open Server 5.0.6 |
| Not Vulnerable: | |
Discussion
SCO OpenServer Enable And Disable Multiple Local Buffer Overflow Vulnerabilities
Multiple local buffer-overflow vulnerabilities affect SCO OpenServer enable/disable utilities. These issues occur because the application fails to securely copy user-supplied data into sensitive process buffers.
Note that unprivileged users are not permitted to execute the 'enable' and 'disable' utilities. Therefore, attackers must be users who have been assigned the 'lp' privilege by an administrator prior to being able to execute the affected utility and exploit this issue.
An attacker may leverage this issue to execute arbitrary code with the privileges of the superuser. This may facilitate privilege escalation.
Multiple local buffer-overflow vulnerabilities affect SCO OpenServer enable/disable utilities. These issues occur because the application fails to securely copy user-supplied data into sensitive process buffers.
Note that unprivileged users are not permitted to execute the 'enable' and 'disable' utilities. Therefore, attackers must be users who have been assigned the 'lp' privilege by an administrator prior to being able to execute the affected utility and exploit this issue.
An attacker may leverage this issue to execute arbitrary code with the privileges of the superuser. This may facilitate privilege escalation.
Exploit / POC
SCO OpenServer Enable And Disable Multiple Local Buffer Overflow Vulnerabilities
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
SCO OpenServer Enable And Disable Multiple Local Buffer Overflow Vulnerabilities
Solution:
SCO has released advisory SCOSA-2005.13 along with fixes dealing with this issue. Please see the referenced advisory for more information.
SCO Open Server 5.0.6
SCO Open Server 5.0.7
Solution:
SCO has released advisory SCOSA-2005.13 along with fixes dealing with this issue. Please see the referenced advisory for more information.
SCO Open Server 5.0.6
-
SCO VOL.000.000
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.13/VOL.000.000 -
SCO SCOSA-2005.13
OpenServer 5.0.6OpenServer 5.0.7
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.13
SCO Open Server 5.0.7
-
SCO SCOSA-2005.13
OpenServer 5.0.6OpenServer 5.0.7
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.13 -
SCO 507mp3_vol.tar
Read the Maintenance Pack 3 Release and Installation Notes atftp://ftp.sco.com/pub/openserver5/507/mp/mp3/osr507mp3.txt
ftp://ftp.sco.com/pub/openserver5/507/mp/mp3/507mp3_vol.tar
References
SCO OpenServer Enable And Disable Multiple Local Buffer Overflow Vulnerabilities
References:
References:
- SCO OpenServer Home Page (SCO)