Novell NetMail for Linux Group File Ownership Local Privilege Escalation

2005-06-20T06:26:58
ID OSVDB:17456
Type osvdb
Reporter OSVDB
Modified 2005-06-20T06:26:58

Description

Vulnerability Description

Novell NetMail for Linux contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered because the files in the Linux distribution of the NetMail has the owner ID and group ID set to 500. If NetMail is installed on a system where user ID 500 exists or where users belong to group ID 500, these users could delete or replace the netmail binaries, resulting in a loss of integrity.

Technical Description

This issue can only be exploited on Linux operating systems.

Solution Description

Upgrade to version 3.52c1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Novell NetMail for Linux contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered because the files in the Linux distribution of the NetMail has the owner ID and group ID set to 500. If NetMail is installed on a system where user ID 500 exists or where users belong to group ID 500, these users could delete or replace the netmail binaries, resulting in a loss of integrity.

References:

Vendor URL: http://www.novell.com/products/netmail/ Vendor Specific Advisory URL Security Tracker: 1014251 Secunia Advisory ID:15763 Keyword: TID10098022 FrSIRT Advisory: ADV-2005-0819 CVE-2005-1976 Bugtraq ID: 14005