|
|
gnuserv MIT-MAGIC-COOKIE存在远程缓冲溢出漏洞
发布时间:2001-02-08
更新时间:2001-02-08
严重程度:中
威胁程度:普通用户访问权限
错误类型:输入验证错误
利用方式:服务器模式
受影响系统MandrakeSoft Corporate Server 1.0.1
MandrakeSoft Linux Mandrake 7.2
MandrakeSoft Linux Mandrake 7.1
MandrakeSoft Linux Mandrake 7.0
MandrakeSoft Linux Mandrake 6.1
MandrakeSoft Linux Mandrake 6.0
Martin Schwenkes gnuserv 3.12 and Previous
+ XEmacs Development Team XEmacs 21.2.43 and Previous
+ XEmacs Development Team XEmacs 2.1.13 and Previous
RedHat Linux 6.2 sparc
RedHat Linux 6.2 i386
RedHat Linux 6.2 alpha 详细描述
gunuserv是一个免费的客户端服务程序,包含xemacs,其中存在一个漏洞可以导致远程用户执行任意代码。gnuserv 允许使用MIT-MAGIC-COOKIE 认证体制来连接本地会话。但是,服务程序把信任远程连接段而发送带大小限制的MAGIC COOKIE。而正常的检查没有检查到这个cookie,这样就允许对cookie进行一个缓冲溢出,或者改动预定义的验证长度而新的长度1,来对验证机制进行暴力破解。
测试代码
升级程序:
MandrakeSoft Corporate Server 1.0.1:
MandrakeSoft RPM 1.0.1 i386 xemacs-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/1.0.1/RPMS/xemacs-21.1.14-1.2mdk.i586.rpm
MandrakeSoft RPM 1.0.1 i386 xemacs-el-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/1.0.1/RPMS/xemacs-el-21.1.14-1.2mdk.i586.rpm
MandrakeSoft RPM 1.0.1 i386 xemacs-extras-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/1.0.1/RPMS/xemacs-extras-21.1.14-1.2mdk.i586.rpm
MandrakeSoft RPM 1.0.1 i386 xemacs-info-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/1.0.1/RPMS/xemacs-info-21.1.14-1.2mdk.i586.rpm
MandrakeSoft RPM 1.0.1 i386 xemacs-mule-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/1.0.1/RPMS/xemacs-mule-21.1.14-1.2mdk.i586.rpm
MandrakeSoft Linux Mandrake 7.2:
MandrakeSoft RPM 7.2 i386 xemacs-21.1.14-1.1mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.2/RPMS/xemacs-21.1.14-1.1mdk.i586.rpm
MandrakeSoft RPM 7.2 i386 xemacs-el-21.1.14-1.1mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.2/RPMS/xemacs-el-21.1.14-1.1mdk.i586.rpm
MandrakeSoft RPM 7.2 i386 xemacs-extras-21.1.14-1.1mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.2/RPMS/xemacs-extras-21.1.14-1.1mdk.i586.rpm
MandrakeSoft RPM 7.2 i386 xemacs-info-21.1.14-1.1mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.2/RPMS/xemacs-info-21.1.14-1.1mdk.i586.rpm
MandrakeSoft RPM 7.2 i386 xemacs-mule-21.1.14-1.1mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.2/RPMS/xemacs-mule-21.1.14-1.1mdk.i586.rpm
MandrakeSoft Linux Mandrake 7.1:
MandrakeSoft RPM 7.1 i386 xemacs-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.1/RPMS/xemacs-21.1.14-1.2mdk.i586.rpm
MandrakeSoft RPM 7.1 i386 xemacs-el-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.1/RPMS/xemacs-el-21.1.14-1.2mdk.i586.rpm
MandrakeSoft RPM 7.1 i386 xemacs-extras-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.1/RPMS/xemacs-extras-21.1.14-1.2mdk.i586.rpm
MandrakeSoft RPM 7.1 i386 xemacs-info-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.1/RPMS/xemacs-info-21.1.14-1.2mdk.i586.rpm
MandrakeSoft RPM 7.1 i386 xemacs-mule-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.1/RPMS/xemacs-mule-21.1.14-1.2mdk.i586.rpm
MandrakeSoft Linux Mandrake 7.0:
MandrakeSoft RPM 7.0 i386 xemacs-extras-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.0/RPMS/xemacs-extras-21.1.14-1.2mdk.i586.rpm
MandrakeSoft RPM 7.0 i386 xemacs-el-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.0/RPMS/xemacs-el-21.1.14-1.2mdk.i586.rpm
MandrakeSoft RPM 7.0 i386 xemacs-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.0/RPMS/xemacs-21.1.14-1.2mdk.i586.rpm
MandrakeSoft RPM 7.0 i386 xemacs-mule-21.1.14-1.2mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/7.0/RPMS/xemacs-mule-21.1.14-1.2mdk.i586.rpm
MandrakeSoft Linux Mandrake 6.1:
MandrakeSoft RPM 6.1 i386 xemacs-21.1.14-1.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.1/RPMS/xemacs-21.1.14-1.3mdk.i586.rpm
MandrakeSoft RPM 6.1 i386 xemacs-el-21.1.14-1.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.1/RPMS/xemacs-el-21.1.14-1.3mdk.i586.rpm
MandrakeSoft RPM 6.1 i386 xemacs-extras-21.1.14-1.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.1/RPMS/xemacs-extras-21.1.14-1.3mdk.i586.rpm
MandrakeSoft RPM 6.1 i386 xemacs-info-21.1.14-1.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.1/RPMS/xemacs-info-21.1.14-1.3mdk.i586.rpm
MandrakeSoft RPM 6.1 i386 xemacs-mule-21.1.14-1.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.1/RPMS/xemacs-mule-21.1.14-1.3mdk.i586.rpm
MandrakeSoft Linux Mandrake 6.0:
MandrakeSoft RPM 6.0 i386 xemacs-21.1.14-1.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.0/RPMS/xemacs-21.1.14-1.3mdk.i586.rpm
MandrakeSoft RPM 6.0 i386 xemacs-el-21.1.14-1.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.0/RPMS/xemacs-el-21.1.14-1.3mdk.i586.rpm
MandrakeSoft RPM 6.0 i386 xemacs-extras-21.1.14-1.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.0/RPMS/xemacs-extras-21.1.14-1.3mdk.i586.rpm
MandrakeSoft RPM 6.0 i386 xemacs-info-21.1.14-1.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.0/RPMS/xemacs-info-21.1.14-1.3mdk.i586.rpm
MandrakeSoft RPM 6.0 i386 xemacs-mule-21.1.14-1.3mdk.i586.rpm
http://sunsite.ualberta.ca/pub/Mirror/Linux/mandrake/updates/6.0/RPMS/xemacs-mule-21.1.14-1.3mdk.i586.rpm
Martin Schwenkes gnuserv 3.12 and Previous:
XEmacs Development Team upgrade xemacs 21.1.14
http://www.xemacs.org/Releases/21.1.14.html
Martin Schwenkes patch gnuserv-3.12.1.tar.gz
http://www.linuxcare.com.au/people/martins/hacks/emacs/src/gnuserv-3.12.1.tar.gz
RedHat Linux 6.2 sparc:
Red Hat Inc. RPM 6.2 sparc xemacs-21.1.14-2.62.sparc.rpm
ftp://updates.redhat.com/powertools/6.2/sparc/xemacs-21.1.14-2.62.sparc.rpm
Red Hat Inc. RPM 6.2 sparc xemacs-el-21.1.14-2.62.sparc.rpm
ftp://updates.redhat.com/powertools/6.2/sparc/xemacs-el-21.1.14-2.62.sparc.rpm
Red Hat Inc. RPM 6.2 sparc xemacs-info-21.1.14-2.62.sparc.rpm
ftp://updates.redhat.com/powertools/6.2/sparc/xemacs-info-21.1.14-2.62.sparc.rpm
RedHat Linux 6.2 i386:
Red Hat Inc. RPM 6.2 i386 xemacs-21.1.14-2.62.i386.rpm
ftp://updates.redhat.com/powertools/6.2/i386/xemacs-21.1.14-2.62.i386.rpm
Red Hat Inc. RPM 6.2 i386 xemacs-el-21.1.14-2.62.i386.rpm
ftp://updates.redhat.com/powertools/6.2/i386/xemacs-el-21.1.14-2.62.i386.rpm
Red Hat Inc. RPM 6.2 i386 xemacs-info-21.1.14-2.62.i386.rpm
ftp://updates.redhat.com/powertools/6.2/i386/xemacs-info-21.1.14-2.62.i386.rpm
RedHat Linux 6.2 alpha:
Red Hat Inc. RPM 6.2 alpha xemacs-21.1.14-2.62.alpha.rpm
ftp://updates.redhat.com/powertools/6.2/alpha/xemacs-21.1.14-2.62.alpha.rpm
Red Hat Inc. RPM 6.2 alpha xemacs-el-21.1.14-2.62.alpha.rpm
ftp://updates.redhat.com/powertools/6.2/alpha/xemacs-el-21.1.14-2.62.alpha.rpm
Red Hat Inc. RPM 6.2 alpha xemacs-info-21.1.14-2.62.alpha.rpm
ftp://updates.redhat.com/powertools/6.2/alpha/xemacs-info-21.1.14-2.62.alpha.rpm
解决方案
尚无
相关信息
|
