Lucene search

Gentoo FoundationGLSA-200409-17

HistorySep 14, 2004 - 12:00 a.m.

SUS: Local root vulnerability

2004-09-1400:00:00

Gentoo Foundation

security.gentoo.org

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.001

Percentile

32.1%

JSON

Background

SUS is a utility that allows regular users to be able to execute certain commands as root.

Description

Leon Juranic found a bug in the logging functionality of SUS that can lead to local privilege escalation. A format string vulnerability exists in the log() function due to an incorrect call to the syslog() function.

Impact

An attacker with local user privileges can potentially exploit this vulnerability to gain root access.

Workaround

There is no known workaround at this time.

Resolution

All SUS users should upgrade to the latest version:

 # emerge sync
 
 # emerge -pv "&gt;=app-admin/sus-2.0.2-r1"
 # emerge "&gt;=app-admin/sus-2.0.2-r1"

OSVersionArchitecturePackageVersionFilename
Gentooanyallapp-admin/sus< 2.0.2-r1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Gentoo	any	all	app-admin/sus	< 2.0.2-r1	UNKNOWN

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.001

Percentile

32.1%

JSON

Related for GLSA-200409-17