U radu programskog paketa HP Application Lifecycle Management uočen je novi sigurnosni propust kojeg lokalni napadač može iskoristiti za dobivanje većih privilegija i prepisivanje proizvoljnih datoteka.
Paket:
HP Application Lifecycle Management 11.x
Operacijski sustavi:
HP Tru64 UNIX 4.x, HP Tru64 UNIX 5.x, HP webOS 3.x, HP-UX 10.x, HP-UX 11.x
Problem:
pogreška u programskoj komponenti
Iskorištavanje:
lokalno
Posljedica:
dobivanje većih privilegija, izmjena podataka
Rješenje:
zaobilazno rješenje (workaround)
Izvorni ID preporuke:
SA47040
Izvor:
Secunia
Problem:
Sigurnosni propust se javlja zbog pogreške u programskoj skripti "foundation.sh".
Posljedica:
Lokalni zloćudni korisnik navedenu ranjivost može iskoristiti za dobivanje većih ovlasti te prepisivanje proizvoljnih datoteka.
Rješenje:
Preporuča se ograničiti pristup samo na pouzdane korisnike.
HP Application Lifecycle Management Insecure Temporary Files Weakness
Secunia Advisory SA47040
Release Date 2011-12-09
Criticality level Not criticalNot critical
Impact Privilege escalation
Where Local system
Authentication level Available in Customer Area
Report reliability Available in Customer Area
Solution Status Unpatched
Systems affected Available in Customer Area
Approve distribution Available in Customer Area
Remediation status Secunia VIM
Software:
HP Application Lifecycle Management 11.x
Secunia CVSS Score Available in Customer Area
CVE Reference(s) No CVE references.
Description
A weakness has been reported in HP Application Lifecycle Management, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
The weakness is caused due to the uninstall script (foundation.sh) using temporary files in an insecure manner, which can be exploited to e.g. overwrite arbitrary files via symlink attacks.
The weakness is reported in version 11.00. Other versions may also be affected.
Solution
Restrict access to trusted users only.
Provided and/or discovered by
0a29406d9794e4f9b30b3c5d6702c708
Original Advisory
http://0a29.blogspot.com/2011/12/0a29-11-2-privilege-escalation.html
Posljednje sigurnosne preporuke