xfocus logo xfocus title
首页 焦点原创 安全文摘 安全工具 安全漏洞 焦点项目 焦点论坛 关于我们
English Version
 最近严重漏洞 
Microsoft RPC接口远程任意代码可执行漏洞
Cisco IOS接口不正确处理IPV4包远程拒绝服务漏洞
Microsoft Windows CreateFile API命名管道权限提升漏洞

Eterm PATH_ENV缓冲区溢出漏洞


发布时间:2003-05-17
更新时间:2003-06-12
严重程度:
威胁程度:本地管理员权限
错误类型:边界检查错误
利用方式:服务器模式

BUGTRAQ ID:7708
CVE(CAN) ID:CAN-2003-0382

受影响系统
Eterm Eterm 0.9.1
   -Debian Linux 2.3 powerpc
Eterm Eterm 0.9.2
   +Debian Linux 3.0
   +Debian Linux 3.0 alpha
   +Debian Linux 3.0 arm
   +Debian Linux 3.0 hppa
   +Debian Linux 3.0 ia-32
   +Debian Linux 3.0 ia-64
   +Debian Linux 3.0 m68k
   +Debian Linux 3.0 mips
   +Debian Linux 3.0 mipsel
   +Debian Linux 3.0 ppc
   +Debian Linux 3.0 s/390
   +Debian Linux 3.0 sparc
详细描述
Eterm对环境变量PATH_ENV缺乏边界检查,本地攻击者精心构建PATH_ENV环境变量可以执行shellcode代码获得utmp setuid/setgid甚至root的访问权限。

解决方案
Eterm Eterm 0.9.2:
     Debian Upgrade eterm_0.9.2-0pre2002042903.2_alpha.deb
     http://security.debian.org/pool/updates/main/e/eterm/eterm_0.9.2-0pre2002042903.2_alpha.deb
     Debian GNU/Linux 3.0 alias woody.
     Debian Upgrade eterm_0.9.2-0pre2002042903.2_arm.deb
     http://security.debian.org/pool/updates/main/e/eterm/eterm_0.9.2-0pre2002042903.2_arm.deb
     Debian GNU/Linux 3.0 alias woody.
     Debian Upgrade eterm_0.9.2-0pre2002042903.2_i386.deb
     http://security.debian.org/pool/updates/main/e/eterm/eterm_0.9.2-0pre2002042903.2_i386.deb
     Debian GNU/Linux 3.0 alias woody.
     Debian Upgrade eterm_0.9.2-0pre2002042903.2_ia64.deb
     http://security.debian.org/pool/updates/main/e/eterm/eterm_0.9.2-0pre2002042903.2_ia64.deb
     Debian GNU/Linux 3.0 alias woody.
     Debian Upgrade eterm_0.9.2-0pre2002042903.2_hppa.deb
     http://security.debian.org/pool/updates/main/e/eterm/eterm_0.9.2-0pre2002042903.2_hppa.deb
     Debian GNU/Linux 3.0 alias woody.
     Debian Upgrade eterm_0.9.2-0pre2002042903.2_m68k.deb
     http://security.debian.org/pool/updates/main/e/eterm/eterm_0.9.2-0pre2002042903.2_m68k.deb
     Debian GNU/Linux 3.0 alias woody.
     Debian Upgrade eterm_0.9.2-0pre2002042903.2_mips.deb
     http://security.debian.org/pool/updates/main/e/eterm/eterm_0.9.2-0pre2002042903.2_mips.deb
     Debian GNU/Linux 3.0 alias woody.
     Debian Upgrade eterm_0.9.2-0pre2002042903.2_mipsel.deb
     http://security.debian.org/pool/updates/main/e/eterm/eterm_0.9.2-0pre2002042903.2_mipsel.deb
     Debian GNU/Linux 3.0 alias woody.
     Debian Upgrade eterm_0.9.2-0pre2002042903.2_powerpc.deb
     http://security.debian.org/pool/updates/main/e/eterm/eterm_0.9.2-0pre2002042903.2_powerpc.deb
     Debian GNU/Linux 3.0 alias woody.
     Debian Upgrade eterm_0.9.2-0pre2002042903.2_s390.deb
     http://security.debian.org/pool/updates/main/e/eterm/eterm_0.9.2-0pre2002042903.2_s390.deb
     Debian GNU/Linux 3.0 alias woody.
     Debian Upgrade eterm_0.9.2-0pre2002042903.2_sparc.deb
     http://security.debian.org/pool/updates/main/e/eterm/eterm_0.9.2-0pre2002042903.2_sparc.deb
     Debian GNU/Linux 3.0 alias woody.

相关信息
bazarr <bazarr@ziplip.com>

http://online.securityfocus.com/advisories/5459
http://www.eterm.org/
Copyright © 1998-2003 XFOCUS Team. All Rights Reserved