Systrace Local Policy Bypass Vulnerability
BID:9998
Info
Systrace Local Policy Bypass Vulnerability
| Bugtraq ID: | 9998 |
| Class: | Design Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 29 2004 12:00AM |
| Updated: | Mar 29 2004 12:00AM |
| Credit: | Discovery of this vulnerability has been credited to Brad <[email protected]>. |
| Vulnerable: |
Niels Provos Systrace 1.4 Niels Provos Systrace 1.3 Niels Provos Systrace 1.2 Niels Provos Systrace 1.1 |
| Not Vulnerable: |
Niels Provos Systrace 1.5 |
Discussion
Systrace Local Policy Bypass Vulnerability
Systrace has been reported prone to a vulnerability that may permit an application to completely bypass a Systrace policy. The issue presents itself because Systrace does not perform sufficient sanity checks while handling a process that is being traced with ptrace.
This issue is reported to have been silently patched in Systrace version 1.5, previous versions are believed to be prone to this vulnerability.
Systrace has been reported prone to a vulnerability that may permit an application to completely bypass a Systrace policy. The issue presents itself because Systrace does not perform sufficient sanity checks while handling a process that is being traced with ptrace.
This issue is reported to have been silently patched in Systrace version 1.5, previous versions are believed to be prone to this vulnerability.
Exploit / POC
Systrace Local Policy Bypass Vulnerability
The following proof of concept exploit has been supplied:
The following proof of concept exploit has been supplied:
Solution / Fix
Systrace Local Policy Bypass Vulnerability
Solution:
The vendor has silently patched this issue in Systrace version 1.5; users are advised to apply updates as soon as possible.
Niels Provos Systrace 1.1
Niels Provos Systrace 1.2
Niels Provos Systrace 1.3
Niels Provos Systrace 1.4
Solution:
The vendor has silently patched this issue in Systrace version 1.5; users are advised to apply updates as soon as possible.
Niels Provos Systrace 1.1
-
Niels Provos usr-systrace-2004-01-26
http://niels.xtdnet.nl/systrace/usr-systrace-2004-01-26.tar.gz
Niels Provos Systrace 1.2
-
Niels Provos usr-systrace-2004-01-26
http://niels.xtdnet.nl/systrace/usr-systrace-2004-01-26.tar.gz
Niels Provos Systrace 1.3
-
Niels Provos usr-systrace-2004-01-26
http://niels.xtdnet.nl/systrace/usr-systrace-2004-01-26.tar.gz
Niels Provos Systrace 1.4
-
Niels Provos usr-systrace-2004-01-26
http://niels.xtdnet.nl/systrace/usr-systrace-2004-01-26.tar.gz
References
Systrace Local Policy Bypass Vulnerability
References:
References: