|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[sec-adv] Linux Kernel 2.4 "ioperm" Privilege Escalation Vulnerability
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Wed May 21 2003 - 08:09:33 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Linux Kernel 2.4 "ioperm" Privilege Escalation Vulnerability
READ ONLINE:
http://www.secunia.com/advisories/8823/
CRITICAL:
Less critical
IMPACT:
Privilege escalation
WHERE:
Local system
OPERATING SYSTEM:
SuSE Linux 8.x
SuSE Linux 7.x
Slackware Linux 9.0
Slackware Linux 8.x
RedHat Linux 9
RedHat Linux 8.0
RedHat Linux 7.3
RedHat Linux 7.2
RedHat Linux 7.1
OpenLinux Workstation 3.x
OpenLinux Server 3.x
Mandrake Linux 9.x
Mandrake Linux 8.x
Linux Kernel 2.4.x
Gentoo Linux 1.x
EnGarde Secure Professional 1.x
EnGarde Secure Community 2.x
Debian GNU/Linux unstable alias sid
Conectiva Linux 9
Conectiva Linux 8
Conectiva Linux 7.0
Astaro Security Linux 3
Astaro Security Linux 2
DESCRIPTION:
A vulnerability has been identified in the Linux kernel version 2.4,
which can be exploited by malicious, local users to escalate their
privileges on a vulnerable system.
The vulnerability is caused due to an error in the "ioperm" system
call. This allows unprivileged users to gain read and write access to
I/O ports in the I/O address range 0x000-0x3FF (0-1023) on a system,
which includes access to serial ports, parallel port, diskette drive
controller, graphics controller, and keyboard.
This could e.g. be exploited by a malicious person to monitor
keyboard input by crafting a program monitoring the keyboard I/O
ports.
SOLUTION:
We are not aware of an official patch or update for the Linux
Kernel.
Do not allow untrusted users access to your Linux systems.
Red Hat has issued updated packages. See following advisory:
http://www.secunia.com/advisories/8786/
Updated packages are available for EnGarde from Guardian Digital
Secure Network.
https://www.guardiandigital.com/account/
REPORTED BY / CREDITS:
David Mikolajczyk
ORIGINAL ADVISORY:
http://bugme.osdl.org/show_bug.cgi?id=703
----------------------------------------------------------------------
Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]