SGI IRIX Libdesktopicon.so Local Buffer Overflow Vulnerability
BID:9547
Info
SGI IRIX Libdesktopicon.so Local Buffer Overflow Vulnerability
| Bugtraq ID: | 9547 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Feb 02 2004 12:00AM |
| Updated: | Feb 02 2004 12:00AM |
| Credit: | The discovery of this issue has been credited to Last Stage of Delirium Research Group <http://www.lsd-pl.net/>. |
| Vulnerable: |
SGI IRIX 6.5.22 SGI IRIX 6.5.21 m SGI IRIX 6.5.21 f SGI IRIX 6.5.21 SGI IRIX 6.5.20 m SGI IRIX 6.5.20 f SGI IRIX 6.5.20 SGI IRIX 6.5.19 m SGI IRIX 6.5.19 f SGI IRIX 6.5.19 SGI IRIX 6.5.18 m SGI IRIX 6.5.18 f SGI IRIX 6.5.18 SGI IRIX 6.5.17 m SGI IRIX 6.5.17 f SGI IRIX 6.5.17 SGI IRIX 6.5.16 m SGI IRIX 6.5.16 f SGI IRIX 6.5.16 SGI IRIX 6.5.15 m SGI IRIX 6.5.15 f SGI IRIX 6.5.15 SGI IRIX 6.5.14 m SGI IRIX 6.5.14 f SGI IRIX 6.5.14 SGI IRIX 6.5.13 m SGI IRIX 6.5.13 f SGI IRIX 6.5.13 SGI IRIX 6.5.12 m SGI IRIX 6.5.12 f SGI IRIX 6.5.12 SGI IRIX 6.5.11 m SGI IRIX 6.5.11 f SGI IRIX 6.5.11 SGI IRIX 6.5.10 m SGI IRIX 6.5.10 f SGI IRIX 6.5.10 SGI IRIX 6.5.9 m SGI IRIX 6.5.9 f SGI IRIX 6.5.9 SGI IRIX 6.5.8 m SGI IRIX 6.5.8 f SGI IRIX 6.5.8 SGI IRIX 6.5.7 m SGI IRIX 6.5.7 f SGI IRIX 6.5.7 SGI IRIX 6.5.6 m SGI IRIX 6.5.6 f SGI IRIX 6.5.6 SGI IRIX 6.5.5 m SGI IRIX 6.5.5 f SGI IRIX 6.5.5 SGI IRIX 6.5.4 m SGI IRIX 6.5.4 f SGI IRIX 6.5.4 SGI IRIX 6.5.3 m SGI IRIX 6.5.3 f SGI IRIX 6.5.3 SGI IRIX 6.5.2 m SGI IRIX 6.5.2 f SGI IRIX 6.5.2 SGI IRIX 6.5.1 SGI IRIX 6.5 20 SGI IRIX 6.5 .19m SGI IRIX 6.5 .19f SGI IRIX 6.5 |
| Not Vulnerable: |
SGI IRIX 6.5.23 |
Discussion
SGI IRIX Libdesktopicon.so Local Buffer Overflow Vulnerability
It has been reported that SGI IRIX is prone to a buffer overflow vulnerability that may allow a local attacker to execute arbitrary code on a vulnerable system in order to gain unauthorized access. The problem reportedly exists to insufficient bounds checking of the HOME environment leading to an overflow condition in '/usr/sbin/printers' binary linked to the Libdesktopicon.so library.
Successful exploitation may allow a local attacker to ultimately execute arbitrary code in order to gain unauthorized access to a system.
SGI IRIX versions 6.5.22 and prior may be prone to this issue.
It has been reported that SGI IRIX is prone to a buffer overflow vulnerability that may allow a local attacker to execute arbitrary code on a vulnerable system in order to gain unauthorized access. The problem reportedly exists to insufficient bounds checking of the HOME environment leading to an overflow condition in '/usr/sbin/printers' binary linked to the Libdesktopicon.so library.
Successful exploitation may allow a local attacker to ultimately execute arbitrary code in order to gain unauthorized access to a system.
SGI IRIX versions 6.5.22 and prior may be prone to this issue.
Exploit / POC
SGI IRIX Libdesktopicon.so Local Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
SGI IRIX Libdesktopicon.so Local Buffer Overflow Vulnerability
Solution:
SGI has released a revision to advisory 20040104-01-P, the new advisory is 20040104-02-P, to address this issue. The original patch 5424 had library mismatch issues. Patches 5473 and 5474 will be released for IRIX versions later than 6.5.17. Users should upgrade to one of these versions and then apply the patch when it is available. Further details can be found in the attached advisory.
Solution:
SGI has released a revision to advisory 20040104-01-P, the new advisory is 20040104-02-P, to address this issue. The original patch 5424 had library mismatch issues. Patches 5473 and 5474 will be released for IRIX versions later than 6.5.17. Users should upgrade to one of these versions and then apply the patch when it is available. Further details can be found in the attached advisory.
References
SGI IRIX Libdesktopicon.so Local Buffer Overflow Vulnerability
References:
References: