Red Hat Enterprise Linux审计子系统本地拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1112321 漏洞类型 其他
发布时间 2007-02-27 更新时间 2007-03-19
CVE编号 CVE-2007-0001 CNNVD-ID CNNVD-200703-004
漏洞平台 Linux CVSS评分 4.7
|漏洞来源
https://www.exploit-db.com/exploits/29683
https://www.securityfocus.com/bid/22737
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200703-004
|漏洞详情
RedHatEnterpriseLinux(RHEL)4kernel2.6.9的审计子系统(auditctl-w)中的文件查看执行允许本地用户通过替换一个被查看的文件,来引起拒绝服务攻击(内核紧张)。这并不会导致旧节点上的查看结束。
|漏洞EXP
source: http://www.securityfocus.com/bid/22737/info

The Linux Kernel is prone to a denial-of-service vulnerability.

A local attacker can exploit this issue to crash the kernel.

Linux kernel versions 2.6.x are vulnerable to this issue.

1. auditctl -w /etc/shadow
2. useradd userb
|受影响的产品
Redhat Enterprise Linux WS 4 Redhat Enterprise Linux ES 4 Redhat Enterprise Linux AS 4 Redhat Desktop 4.0 Linux kernel 2.6.20 .1 Linux kernel 2.6.20 Linux
|参考资料

来源:REDHAT
名称:RHSA-2007:0085
链接:http://www.redhat.com/support/errata/RHSA-2007-0085.html
来源:MISC
链接:http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=223129
来源:SECTRACK
名称:1017705
链接:http://www.securitytracker.com/id?1017705
来源:BID
名称:22737
链接:http://www.securityfocus.com/bid/22737
来源:SECUNIA
名称:24300
链接:http://secunia.com/advisories/24300
来源:OSVDB
名称:33031
链接:http://osvdb.org/33031