NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2000-07

Subject: [RHSA-2000:016-03] Multiple local imwheel vulnerabilities
From: bugzillaREDHAT.COM
Date: Mon Jul 03 2000 - 23:03:00 CDT

Next message: Tom Perrine: "Re: [RHSA-2000:039-02] remote root exploit (SITE EXEC) fixed (fwd)"
Previous message: Mike Gleason: "Re: ftpd: the advisory version"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---------------------------------------------------------------------
Red Hat, Inc. Security Advisory

Synopsis: Multiple local imwheel vulnerabilities
Advisory ID: RHSA-2000:016-03
Issue date: 2000-04-20
Updated on: 2000-07-03
Product: Red Hat Powertools
Keywords: imwheel buffer imwheel-solo
Cross references: N/A
---------------------------------------------------------------------

1. Topic:

Multiple vulnerabilities exist in imwheel.

2. Relevant releases/architectures:

Red Hat Powertools 6.1 - i386 alpha sparc
Red Hat Powertools 6.2 - i386 alpha sparc

3. Problem description:

Multiple local vulnerabilities exist in imwheel.

* Read access violations where there is no checking of the file
itself, it follows a symlink blindly.

* Perl wrapper might allow other users on the machine to kill
the imwheel process.

4. Solution:

Because the core functionality of imwheel has been incorporated
into many existing applications, removing imwheel will not
incur a significant loss of functionality.

If the machine which has imwheel installed is not a single user
machine we recommend removing imwheel. To remove imwheel run
this command:

rpm -e imwheel

5. Bug IDs fixed (http://bugzilla.redhat.com/bugzilla for more info):

N/A

6. RPMs required:

N/A

7. Verification:

MD5 sum Package Name
--------------------------------------------------------------------------
N/A

These packages are GPG signed by Red Hat, Inc. for security. Our key
is available at:
http://www.redhat.com/corp/contact.html

You can verify each package with the following command:
rpm --checksig <filename>

If you only wish to verify that each package has not been corrupted or
tampered with, examine only the md5sum with the following command:
rpm --checksig --nogpg <filename>

8. References:

N/A

Next message: Tom Perrine: "Re: [RHSA-2000:039-02] remote root exploit (SITE EXEC) fixed (fwd)"
Previous message: Mike Gleason: "Re: ftpd: the advisory version"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]