|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[SA12154] Thintune Client Multiple Vulnerabilities
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Mon Jul 26 2004 - 10:19:58 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Thintune Client Multiple Vulnerabilities
SECUNIA ADVISORY ID:
SA12154
VERIFY ADVISORY:
http://secunia.com/advisories/12154/
CRITICAL:
Moderately critical
IMPACT:
System access
WHERE:
From local network
OPERATING SYSTEM:
Thintune OS 2.x
http://secunia.com/product/3724/
DESCRIPTION:
Dirk Loss has reported some vulnerabilities in Thintune OS, allowing
malicious people to gain system access and local users to escalate
their privileges.
1) A process is listening on port 25702/TCP allowing malicious people
to connect using the password "jstwo". The process provides access to
certain administrative functionality including a root shell.
2) Certain usernames and passwords used for connecting to remote
servers are stored in clear text.
3) It is possible to open a local root shell "lshell" on the client
by pressing "CTRL+SHIFT+ALT+DEL" and entering the password
"maertsJ".
4) The Phoenix browser is executed as "root" effectively allowing any
user to read arbitrary local files or launch the "lshell".
The vulnerabilities have been reported in Thintune OS 2.4.38. Other
versions may also be affected.
SOLUTION:
Reportedly, these vulnerabilities have been fixed in Thintune OS
version 2.4.39.
PROVIDED AND/OR DISCOVERED BY:
Dirk Loss
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]