Red Hat Initscripts Local Privilege Escalation Vulnerability
BID:17038
Info
Red Hat Initscripts Local Privilege Escalation Vulnerability
| Bugtraq ID: | 17038 |
| Class: | Input Validation Error |
| CVE: |
CVE-2005-3629 |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 08 2006 12:00AM |
| Updated: | Apr 05 2006 07:18PM |
| Credit: | This issue was disclosed by the vendor. |
| Vulnerable: |
SGI ProPack 3.0 SP6 Redhat initscripts 7.93.24 Redhat Enterprise Linux WS 4 Redhat Enterprise Linux ES 4 Redhat Enterprise Linux AS 4 Redhat Desktop 4.0 |
| Not Vulnerable: | |
Discussion
Red Hat Initscripts Local Privilege Escalation Vulnerability
The 'initscripts' package is prone to a local privilege-escalation vulnerability.
The vulnerability presents itself because the application fails to properly sanitize malicious data supplied through environment variables.
An attacker may exploit this issue to execute arbitrary commands with superuser privileges.
The 'initscripts' package is prone to a local privilege-escalation vulnerability.
The vulnerability presents itself because the application fails to properly sanitize malicious data supplied through environment variables.
An attacker may exploit this issue to execute arbitrary commands with superuser privileges.
Exploit / POC
Red Hat Initscripts Local Privilege Escalation Vulnerability
An attacker must modify specific environment variables to execute arbitrary commands when used.
An attacker must modify specific environment variables to execute arbitrary commands when used.
Solution / Fix
Red Hat Initscripts Local Privilege Escalation Vulnerability
Solution:
Please see the referenced vendor advisories for more information and fixes.
Solution:
Please see the referenced vendor advisories for more information and fixes.
References
Red Hat Initscripts Local Privilege Escalation Vulnerability
References:
References: