BitKeeper Unspecified Code Injection

2003-08-22T08:37:35
ID OSVDB:2146
Type osvdb
Reporter OSVDB
Modified 2003-08-22T08:37:35

Description

Vulnerability Description

BitKeeper versions 3.0.1 and below contain a flaw that may allow a remote attacker to execute arbitrary code on the system. A remote attacker can supply specially-crafted files containing malicious code inside a patch. This then would be executed on the victim's system when the victim loads the patch and could lead to system compromise.

Technical Description

The problem is said to occur due to an insecure configuration in place by default. Technical details regarding this issue are currently unavailable, however it is said that the problem occurs within the trigger functionality of BitKeeper when a user accepts a patch containing malicious files.

Solution Description

Upgrade to version 3.0.2. If unable to upgrade as a work around for older versions add "export BK_NO_TRIGGERS=YES" to your enviroment.

Short Description

BitKeeper versions 3.0.1 and below contain a flaw that may allow a remote attacker to execute arbitrary code on the system. A remote attacker can supply specially-crafted files containing malicious code inside a patch. This then would be executed on the victim's system when the victim loads the patch and could lead to system compromise.

References:

ISS X-Force ID: 12969 Generic Informational URL: http://www.secunia.com/advisories/9592/ Generic Informational URL: http://www.syss.de/advisories.php?id=7&year=2003 Generic Informational URL: http://www.bitkeeper.com/ Bugtraq ID: 8468