Linux gpm daemon allows arbitrary file removal

Overview

gpm version 1.19.2 and earlier are vulnerable due to a flaw that allows a local user to delete arbitrary files.

Description

gpm (General Purpose Mouse) is the program that lets you use the mouse in console mode when not using XWindows. It is usually included in Linux distributions, and can be started from the command line or in the startup script /etc/rc.d/rc.local. A vulnerability in gpm version 1.19.2 and earlier allows local users to delete arbitrary files.

---

Impact

A user with console access can use this vulnerability to delete any file of his choosing.

---

Solution

Upgrade to gpm version 1.19.3 or later.

---

Vendor Information

25701

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Caldera __ Affected

Notified: July 20, 2000 Updated: September 13, 2002

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

Caldera Systems has released a security advisory at http://www.caldera.com/support/security/advisories/CSSA-2000-024.0.txt.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%2325701 Feedback>).

Conectiva __ Affected

Updated: May 25, 2001

Status

Affected

Vendor Statement

Conectiva has released a security advisory at http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000240.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%2325701 Feedback>).

MandrakeSoft __ Affected

Updated: May 25, 2001

Status

Affected

Vendor Statement

MandrakeSoft has released a security advisory at <http://www.linux-mandrake.com/en/security/2000/MDKSA-2000-025.php3?dis=6.0&gt;.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%2325701 Feedback>).

Red Hat Inc. __ Unknown

Updated: May 25, 2001

Status

Unknown

Vendor Statement

RedHat has released a security advisiory at <http://www.redhat.com/support/errata/RHSA-2000-045-01.html&gt;.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

It is unknown whether Red Hat linux is vulnerable to this specific vulnerability.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%2325701 Feedback>).

CVSS Metrics

Group	Score	Vector
Base
Temporal
Environmental

References

• <http://www.securityfocus.com/bid/1512&gt;
• <http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2000-0667&gt;
• http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000240
• http://marc.theaimsgroup.com/?l=bugtraq&m=96473014104340&w=2
• <http://archives.neohapsis.com/archives/bugtraq/2000-07/0396.html&gt;
• <http://www.caldera.com/support/security/advisories/CSSA-2000-024.0.txt&gt;
• http://marc.theaimsgroup.com/?l=bugtraq&m=96480812908563&w=2
• <http://www.linux-mandrake.com/en/security/2000/MDKSA-2000-025.php3?dis=6.0&gt;
• <http://www.redhat.com/support/errata/RHSA-2000-045-01.html&gt;

Acknowledgements

This document was written by Andy Moore.

Other Information

CVE IDs:	CVE-2000-0667
Severity Metric:	3.04 Date Public: