OpenAFS FetchStatus 响应 特权提升漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1191284 漏洞类型 配置错误
发布时间 2007-03-20 更新时间 2007-04-05
CVE编号 CVE-2007-1507 CNNVD-ID CNNVD-200703-455
漏洞平台 N/A CVSS评分 7.5
|漏洞来源
https://www.securityfocus.com/bid/23060
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200703-455
|漏洞详情
OpenAFS11.4.4之前的1.4.x版本和1.5.17之前的1.5.x版本中的默认配置支持本地cell内的setuid程序,这使得攻击者可以通过哄骗对AFScachemanagerFetchStatus请求的响应和为cache中的文件设置setuid和root所有权,来获得特权。
|受影响的产品
OpenAFS OpenAFS 1.5.16 OpenAFS OpenAFS 1.5 OpenAFS OpenAFS 1.4.3 OpenAFS OpenAFS 1.3.81 OpenAFS OpenAFS 1.3.2 OpenAFS OpenAFS 1.3.1 OpenAFS OpenAFS 1.3
|参考资料

来源:MLIST
名称:[OpenAFS-announce]20070319OpenAFS1.5.17releaseavailable
链接:http://www.openafs.org/pipermail/openafs-announce/2007/000186.html
来源:XF
名称:openafs-setuid-privilege-escalation(33180)
链接:http://xforce.iss.net/xforce/xfdb/33180
来源:SECTRACK
名称:1017807
链接:http://www.securitytracker.com/id?1017807
来源:BID
名称:23060
链接:http://www.securityfocus.com/bid/23060
来源:MLIST
名称:[OpenAFS-announce]20070320OpenAFSSecurityAdvisory2007-001:privilegeescalationinUnix-basedclients
链接:http://www.openafs.org/pipermail/openafs-announce/2007/000187.html
来源:MLIST
名称:[OpenAFS-announce]20070319OpenAFS1.4.4available
链接:http://www.openafs.org/pipermail/openafs-announce/2007/000185.html
来源:VUPEN
名称:ADV-2007-1033
链接:http://www.frsirt.com/english/advisories/2007/1033
来源:DEBIAN
名称:DSA-1271
链接:http://www.debian.org/security/2007/dsa-1271
来源:SECUNIA
名称:24607
链接:http://secunia.com/advisories/24607
来源:SECUNIA
名称:24599
链接:http://secunia.com/advisories/24599
来源:SECUNIA
名称:24582
链接:http://secunia.com/advisories/24582
来源:M