|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[sec-adv] zblast Privilege Escalation Vulnerability
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Tue Jun 10 2003 - 05:39:46 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
zblast Privilege Escalation Vulnerability
READ ONLINE:
http://www.secunia.com/advisories/8983/
CRITICAL:
Not critical
IMPACT:
Privilege escalation
WHERE:
Local system
SOFTWARE:
zblast 1.x
DESCRIPTION:
A vulnerability has been reported in zblast, which can be exploited
by malicious, local users to escalate privileges on a vulnerable
system.
The vulnerability is caused due to a boundary error, when the
environment variables "ZBLAST_NAME", "USER", and "LOGNAME" are copied
into the allocated buffer. This happens when writing to the high
score file and can be exploited by manipulating the environment
variables, which can result in a buffer overflow.
Successful exploitation allows execution of arbitrary code with the
privileges of the "games" group.
SOLUTION:
If you consider this a security issue, remove zblast from your system
or remove the sgid bit. Games shouldn't be installed on production
systems.
REPORTED BY / CREDITS:
Vade 79
----------------------------------------------------------------------
Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]