From: Secunia Security Advisories (sec-advsecunia.com)
Date: Mon May 12 2003 - 04:46:39 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
ListProc Privilege Escalation

READ ONLINE:
http://www.secunia.com/advisories/8757/

CRITICAL:
Less critical

IMPACT:
Privilege escalation

WHERE:
Local system

SOFTWARE:
ListProc 8.x

DESCRIPTION:
A vulnerability has been identified in ListProc, which can be
exploited by local users to escalate privileges.

The problem is that the "ULISTPROC_UMASK" environment variable isn't
verified in the "catmail" helper application, which is installed
setuid root. This allows malicious users to cause a buffer overflow,
which can be exploited to execute arbitrary code with root
privileges.

Exploit code has been released.

The vulnerability has been confirmed in version 8.2.09.

SOLUTION:
There is no patch available. Other security researchers have
indicated that more vulnerabilities seem to be present.

We recommend that you use a different mailing list management system
until the new development team releases a new version.

REPORTED BY / CREDITS:
KF

ORIGINAL ADVISORY:
http://safemode.org/files/zillion/exploits/List-Proc-catmail.pl

----------------------------------------------------------------------

Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]