OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: sco-securitycaldera.com
Date: Fri Jun 29 2001 - 16:55:31 CDT

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    To: bugtraqsecurityfocus.com security-announcelists.securityportal.com announcelists.caldera.com

    ___________________________________________________________________________

                Caldera International, Inc. Security Advisory

    Subject: UnixWare: packaging tool exploits
    Advisory number: CSSA-2001-SCO.5
    Issue date: 2001 June 29
    Cross reference:
    ___________________________________________________________________________

    1. Problem Description

            The packaging tools can be exploited to print /etc/shadow,
            leading to a probable root compromise.

    2. Vulnerable Versions

            Operating System Version Affected Files
            ------------------------------------------------------------------
            UnixWare 7 All /usr/bin/pkginfo
                                                    /usr/bin/pkgparam
                                                    /usr/bin/pkgtrans
                                                    /usr/sbin/pkgadd
                                                    /usr/sbin/pkgcat
                                                    /usr/sbin/pkginstall
                                                    /usr/sbin/pkgrm
                                                            

    3. Workaround

            None.

    4. UnixWare 7

      4.1 Location of Fixed Binaries

            ftp://ftp.sco.com/pub/security/unixware/sr847997/

      4.2 Verification

            md5 checksums:
            
            5d75084d724882c4baad12a255c00776 erg711743.Z

            md5 is available for download from

                    ftp://ftp.sco.com/pub/security/tools/

      4.3 Installing Fixed Binaries

            Upgrade the affected binaries with the following commands:

            # uncompress /tmp/erg711713a.Z
            # pkgadd -d /tmp/erg711713a

    5. References

            http://www.technotronic.com/xnec/
            http://www.calderasystems.com/support/security/index.html

    6. Disclaimer

            Caldera International, Inc. is not responsible for the misuse
            of any of the information we provide on our website and/or
            through our security advisories. Our advisories are a service
            to our customers intended to promote secure installation and
            use of Caldera International, Inc. products.

    7.Acknowledgements

            Caldera International wishes to thank Brock Tellier
            (btellierusa.net) for his analysis and help concerning this
            issue.

            In addition, an acknowledgement to Mr. Tellier was
            inadvertently omitted from advisory [CSSA-2001-SCO.1].
             
    ___________________________________________________________________________

    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.0.6 (SCO_SV)
    Comment: For info see http://www.gnupg.org

    iEYEARECAAYFAjs8+VMACgkQaqoBO7ipriFDhACfciJYFy0iHrWMrqiVbSZLlO2Y
    bhsAn3ZT97+2t3JqNszwAtxUJRtbWLON
    =YcoZ
    -----END PGP SIGNATURE-----