Security Bulletin: IBM Workload Deployer - Proof of Concept exploit code, which uses a flaw in glibc that can allow a local unprivileged user to gain root on Linux machine

Summary

Proof of Concept exploit code, which uses a flaw in glibc that can allow a local unprivileged user to gain root on a Linux machine. This affects virtual machines deployed by IBM Workload Deployer using the IBM OS Image for RedHat Linux (version 2.0, 2.0.0.1, 2.0.0.2, 2.0.0.3, 2.0.0.4 and 2.1.0.0).

Vulnerability Details

VULNERABILITY DETAILS

The GNU C Library (glibc) is vulnerable to a heap-based buffer overflow, caused by an off-by-one error in the __gconv_translit_find() function. By setting the CHARSET environment variable to a malicious value, a local attacker could exploit this vulnerability to overflow a buffer and execute arbitrary code on the system with root privileges.

CVE ID:CVE-2014-5119

**DESCRIPTION:**Proof of Concept exploit code, which uses a flaw in glibc that can allow a local unprivileged user to gain root on Linux machine

CVSS:
CVSS Base Score: 7.2
CVSS Temporal Score: See _ https://exchange.xforce.ibmcloud.com/vulnerabilities/95044_ for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:L/AC:L/Au:N/C:C/I:C/A:C)

AFFECTED PRODUCTS AND VERSIONS:

• IBM Workload Deployer Version 3.1.0.7 and later

REMEDIATION:

Apply the following eFix for IBM Workload Deployer v3.1.0.7:

http://www-933.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm~WebSphere&product=ibm/WebSphere/IBM+Workload+Deployer&release=All&platform=All&function=fixId&fixids=HV_RHEL6_X64_PATCHES_EFIX&includeSupersedes=0

Note: This fix updates the IBM OS Image for Red Hat Linux System.

WORKAROUND(S) and MITIGATION(S):
None

ACKNOWLEDGEMENT:
None

CHANGE HISTORY:
26 September 2014 - Original Copy Published