EMC Dantz Retrospect Backup Server Local Privilege Escalation Vulnerability

Bugtraq ID:	17798
Class:	Access Validation Error
CVE:
Remote:	No
Local:	Yes
Published:	May 02 2006 12:00AM
Updated:	May 03 2006 05:50PM
Credit:	Joe Luna reported this issue to the vendor.
Vulnerable:	Dantz Retrospect Server 7.5 Dantz Retrospect Server 7.0 Dantz Retrospect Server 6.5
Not Vulnerable:	Dantz Retrospect Server 7.5.1 .105 Dantz Retrospect Server 7.0.344 Dantz Retrospect Server 6.5.382

EMC Dantz Retrospect Backup Server Local Privilege Escalation Vulnerability


Dantz Retrospect Backup Server is prone to a local privilege-escalation vulnerability. This issue is due to the software's failure to properly ensure that administrative privileges are dropped before executing applications.

This issue allows local users to gain administrative privileges, facilitating the complete compromise of affected computers.

EMC Dantz Retrospect Backup Server Local Privilege Escalation Vulnerability

Attackers can use the application itself to exploit this vulnerability.

EMC Dantz Retrospect Backup Server Local Privilege Escalation Vulnerability

Solution:
The vendor has released an advisory, along with fixes to address this issue. Please see the referenced advisory for further information.


Dantz Retrospect Server 7.5

• Dantz ru751105.exe
  http://ftp.dantz.com/pub/updates/ru751105.exe

Dantz Retrospect Server 7.0

• Dantz Retro-EN_7_0_344.exe
  http://download.dantz.com/archives/Retro-EN_7_0_344.exe

Dantz Retrospect Server 6.5

• Dantz Retro-EN_6_5_382.exe
  http://download.dantz.com/archives/Retro-EN_6_5_382.exe

EMC Dantz Retrospect Backup Server Local Privilege Escalation Vulnerability

References:

• Product Homepage (Dantz)
  
• Retrospect Application Security Update April 2006 (Dantz)