Aladdin Ghostscript有可以利用任意共享库的漏洞

发布时间：2000-11-29
更新时间：2000-11-29
严重程度：高
威胁程度：本地管理员权限
错误类型：环境错误
利用方式：服务器模式

受影响系统

Aladdin Enterprises Ghostscript 5.50
   + RedHat Linux 7.0 i386
   + RedHat Linux 6.2 sparc
   + RedHat Linux 6.2 i386
   + RedHat Linux 6.2 alpha
Aladdin Enterprises Ghostscript 5.10.15
   + Caldera eServer 2.3
   + Caldera eDesktop 2.4
   + Caldera OpenLinux eBuilder 3.0
   + Caldera OpenLinux Desktop 2.3
Aladdin Enterprises Ghostscript 5.10.10
   + MandrakeSoft Linux Mandrake 7.2
   + MandrakeSoft Linux Mandrake 7.1
   + MandrakeSoft Linux Mandrake 7.0
   + MandrakeSoft Linux Mandrake 6.1
   + MandrakeSoft Linux Mandrake 6.0
   + Debian Linux 2.2 sparc
   + Debian Linux 2.2 powerpc
   + Debian Linux 2.2 arm
   + Debian Linux 2.2 alpha
   + Debian Linux 2.2 68k
   + Debian Linux 2.2
Aladdin Enterprises Ghostscript 5.10cl
   + Connectiva Linux 5.1
   + Connectiva Linux 5.0
   + Connectiva Linux 4.2
   + Connectiva Linux 4.1
   + Connectiva Linux 4.0es
   + Connectiva Linux 4.0
Aladdin Enterprises Ghostscript 4.3
   + RedHat Linux 5.2 sparc
   + RedHat Linux 5.2 i386
   + RedHat Linux 5.2 alpha

其中Aladdin Enterprises Ghostscript 5.50.8
Aladdin Enterprises Ghostscript 5.10.16
Aladdin Enterprises Ghostscript 5.10.12cl
   + Connectiva Linux 5.1
   + Connectiva Linux 5.0
   + Connectiva Linux 4.2
   + Connectiva Linux 4.1
   + Connectiva Linux 4.0es
   + Connectiva Linux 4.0
Aladdin Enterprises Ghostscript 5.10.10-1
Aladdin Enterprises Ghostscript 4.3.2
不存在此项漏洞。

详细描述
Aladdin Ghostscript是Postscript多平台解析程序，不正确的使用LD RUN PATH
环境会导致程序当前目录的共享库，攻击者可以建立一个恶意共享库，并放在当前目录，就可以执行任意恶意代码。

测试代码
尚无

解决方案
下载升级程序：Aladdin Enterprises Ghostscript 5.50:

Red Hat RPM 6.2 ghostscript-5.50-8_6.x.alpha
ftp://updates.redhat.com/6.2/alpha/ghostscript-5.50-8_6.x.alpha.rpm

Red Hat RPM 6.2 ghostscript-5.50-8_6.x.sparc
ftp://updates.redhat.com/6.2/sparc/ghostscript-5.50-8_6.x.sparc.rpm

Red Hat RPM 6.2 ghostscript-5.50-8_6.x.i386
ftp://updates.redhat.com/6.2/i386/ghostscript-5.50-8_6.x.i386.rpm

Red Hat RPM 7.0 ghostscript-5.50-8.i386
ftp://updates.redhat.com/7.0/i386/ghostscript-5.50-8.i386.rpm

RedHat RPM 7.0 Alpha: ghostscript-5.50-8
ftp://updates.redhat.com/7.0/alpha/ghostscript-5.50-8.alpha.rpm

Aladdin Enterprises Ghostscript 5.10.10:

Debian upgrade 2.2 gs_5.10-10.1_arm
http://security.debian.org/dists/stable/updates/main/binary-arm/gs_5.10-10.1_arm.deb

Debian upgrade 2.2 gs_5.10-10.1_i386
http://security.debian.org/dists/stable/updates/main/binary-i386/gs_5.10-10.1_i386.deb

Debian upgrade 2.2 gs_5.10-10.1_powerpc
http://security.debian.org/dists/stable/updates/main/binary-powerpc/gs_5.10-10.1_powerpc.deb

Mandrake RPM 7.0 ghostscript-5.10-17.1mdk.i586
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.0/RPMS/ghostscript-5.10-17.1mdk.i586.rpm

Aladdin Enterprises Ghostscript 5.10cl:

Conectiva RPM 4.0 ghostscript-5.10-12cl.i386
ftp://atualizacoes.conectiva.com.br/4.0/i386/ghostscript-5.10-12cl.i386.rpm

Conectiva RPM 4.0es ghostscript-5.10-12cl.i386
ftp://atualizacoes.conectiva.com.br/4.0es/i386/ghostscript-5.10-12cl.i386.rpm

Conectiva RPM 4.1 ghostscript-5.10-12cl.i386
ftp://atualizacoes.conectiva.com.br/4.1/i386/ghostscript-5.10-12cl.i386.rpm

Conectiva RPM 4.2 ghostscript-5.10-12cl.i386
ftp://atualizacoes.conectiva.com.br/4.2/i386/ghostscript-5.10-12cl.i386.rpm

Conectiva RPM 5.0 ghostscript-5.10-12cl.i386
ftp://atualizacoes.conectiva.com.br/5.0/i386/ghostscript-5.10-12cl.i386.rpm

Conectiva RPM 5.1 ghostscript-5.10-12cl.i386
ftp://atualizacoes.conectiva.com.br/5.1/i386/ghostscript-5.10-12cl.i386.rpm

Debian upgrade 2.2 gs_5.10-10.1_alpha
http://security.debian.org/dists/stable/updates/main/binary-alpha/gs_5.10-10.1_alpha.deb

Aladdin Enterprises Ghostscript 4.3:

Red Hat RPM 5.2 ghostscript-4.03-2.alpha
ftp://updates.redhat.com/5.2/alpha/ghostscript-4.03-2.alpha.rpm

Red Hat RPM 5.2 ghostscript-4.03-2.sparc
ftp://updates.redhat.com/5.2/sparc/ghostscript-4.03-2.sparc.rpm

Red Hat RPM 5.2 ghostscript-4.03-2.i386
ftp://updates.redhat.com/5.2/i386/ghostscript-4.03-2.i386.rpm

相关信息

最近严重漏洞

Aladdin Ghostscript有可以利用任意共享库的漏洞