xfocus logo xfocus title
首页 焦点原创 安全文摘 安全工具 安全漏洞 焦点项目 焦点论坛 关于我们
English Version
 最近严重漏洞 
Microsoft RPC接口远程任意代码可执行漏洞
Cisco IOS接口不正确处理IPV4包远程拒绝服务漏洞
Microsoft Windows CreateFile API命名管道权限提升漏洞

RSync Daemon模式辅助组权利漏洞


发布时间:2002-03-19
更新时间:2002-03-19
严重程度:
威胁程度:本地管理员权限
错误类型:访问验证错误
利用方式:服务器模式

BUGTRAQ ID:4285

受影响系统
rsync rsync 2.4.1
   + RedHat Linux 6.2 alpha
   + RedHat Linux 6.2 i386
   + RedHat Linux 6.2 sparc
   + Trustix Secure Linux 1.01
rsync rsync 2.4.3
   + Caldera OpenLinux 2.3
   + Caldera OpenLinux 3.1-IA64
   + Caldera OpenLinux Server 3.1
   + Caldera OpenLinux Workstation 3.1
   + Trustix Secure Linux 1.1
rsync rsync 2.4.4
   + RedHat Linux 7.0 alpha
   + RedHat Linux 7.0 i386
   + RedHat Linux 7.1 alpha
   + RedHat Linux 7.1 i386
   + RedHat Linux 7.1 ia64
rsync rsync 2.4.6
   + Conectiva Linux 6.0
   + Conectiva Linux 7.0
   + EnGarde Secure Linux 1.0.1
   + HP Secure OS software for Linux 1.0
   + MandrakeSoft Corporate Server 1.0.1
   + MandrakeSoft Linux Mandrake 7.1
   + MandrakeSoft Linux Mandrake 7.2
   + MandrakeSoft Linux Mandrake 8.0
   + MandrakeSoft Linux Mandrake 8.0 ppc
   + MandrakeSoft Linux Mandrake 8.1
   + MandrakeSoft Linux Mandrake 8.1 ia64
   + MandrakeSoft Single Network Firewall 7.2
   + RedHat Linux 7.2 i386
   + RedHat Linux 7.2 ia64
   + S.u.S.E. Linux 7.1alpha
   + S.u.S.E. Linux 7.1ppc
   + S.u.S.E. Linux 7.1sparc
   + S.u.S.E. Linux 7.1x86
   + S.u.S.E. Linux 7.2i386
   + S.u.S.E. Linux 7.3i386
   + S.u.S.E. Linux 7.3ppc
   + S.u.S.E. Linux 7.3sparc
   + Trustix Secure Linux 1.2
   + Trustix Secure Linux 1.5
rsync rsync 2.5.0-2
   - Caldera eDesktop 2.4
   - Caldera eServer 2.3.1
   - Caldera OpenLinux 2.3
   - Caldera OpenLinux 3.1-IA64
   - Caldera OpenLinux eBuilder 3.0
   - Caldera OpenLinux Server 3.1
   - Caldera OpenLinux Server 3.1.1
   - Caldera OpenLinux Workstation 3.1
   - Caldera OpenLinux Workstation 3.1.1
rsync rsync 2.5.0-1
   + Caldera OpenLinux Server 3.1.1
   + Caldera OpenLinux Workstation 3.1.1
rsync rsync 2.5.1_1
   - FreeBSD FreeBSD 4.1
   - FreeBSD FreeBSD 4.1.1
   - FreeBSD FreeBSD 4.2
   - FreeBSD FreeBSD 4.3
   - FreeBSD FreeBSD 4.4
   - FreeBSD FreeBSD 4.5
rsync rsync 2.5.1
   - FreeBSD FreeBSD 4.1
   - FreeBSD FreeBSD 4.1.1
   - FreeBSD FreeBSD 4.2
   - FreeBSD FreeBSD 4.3
   - FreeBSD FreeBSD 4.4
   - FreeBSD FreeBSD 4.5
rsync rsync 2.5.2
详细描述
rsync是一款用来通过网络来同步文件和目录结构的程序,一般以ROOT用户运行。

在某些环境下,rsync在它启动之后丢弃辅助组权利会失败,这一般出现在rsync以命令行使用守护程序的模式下,导致进程继承启动进程用户的组属性,在这种情况下,rsync没有正确的丢弃权利,导致权利提升。

测试代码
尚无

解决方案
下载使用升级程序:

rsync rsync 2.4.1:

rsync Upgrade rsync 2.5.4
http://samba.anu.edu.au/rsync/download.html

rsync rsync 2.4.3:

rsync Upgrade rsync 2.5.4
http://samba.anu.edu.au/rsync/download.html

rsync rsync 2.4.4:

rsync Upgrade rsync 2.5.4
http://samba.anu.edu.au/rsync/download.html

rsync rsync 2.4.6:

rsync Upgrade rsync 2.5.4
http://samba.anu.edu.au/rsync/download.html

Mandrake Upgrade rsync-2.5.4-1.2mdk.i586.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Linux 7.1.

Mandrake Upgrade rsync-2.5.4-1.2mdk.src.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Linux 7.1 Source RPM.

Mandrake Upgrade rsync-2.5.4-1.1mdk.i586.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Linux 7.2.

Mandrake Upgrade rsync-2.5.4-1.1mdk.src.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Linux 7.2 Source RPM.

Mandrake Upgrade rsync-2.5.4-1.1mdk.i586.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Linux 8.0.

Mandrake Upgrade rsync-2.5.4-1.1mdk.src.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Linux 8.0 Source RPM.

Mandrake Upgrade rsync-2.5.4-1.1mdk.ppc.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Linux 8.0 PPC.

Mandrake Upgrade rsync-2.5.4-1.1mdk.src.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Linux 8.0 PPC Source RPM.

Mandrake Upgrade rsync-2.5.4-1.1mdk.i586.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Linux 8.1.

Mandrake Upgrade rsync-2.5.4-1.1mdk.src.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Linux 8.1 Source RPM.

Mandrake Upgrade rsync-2.5.4-1.2mdk.i586.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Corporate Server 1.0.1.

Mandrake Upgrade rsync-2.5.4-1.2mdk.src.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Corporate Server 1.0.1 Source RPM.

Mandrake Upgrade rsync-2.5.4-1.1mdk.i586.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Single Network Firewall 7.2.

Mandrake Upgrade rsync-2.5.4-1.1mdk.src.rpm
http://www.mandrakesecure.net/en/ftp.php
Mandrake Single Network Firewall 7.2 Source RPM.

rsync rsync 2.5.0-2:

rsync Upgrade rsync 2.5.4
http://samba.anu.edu.au/rsync/download.html

rsync rsync 2.5.0-1:

rsync Upgrade rsync 2.5.4
http://samba.anu.edu.au/rsync/download.html

rsync rsync 2.5.1_1:

rsync Upgrade rsync 2.5.4
http://samba.anu.edu.au/rsync/download.html

rsync rsync 2.5.1:

rsync Upgrade rsync 2.5.4
http://samba.anu.edu.au/rsync/download.html

rsync rsync 2.5.2:

rsync Upgrade rsync 2.5.4
http://samba.anu.edu.au/rsync/download.html

相关信息
参考:http://online.securityfocus.com/advisories/3962
Copyright © 1998-2003 XFOCUS Team. All Rights Reserved