GCOS-III on HIS 635 TS FORTRAN Assigned GO TO Envelope Bypass

1972-10-01T00:00:00
ID OSVDB:22137
Type osvdb
Reporter OSVDB
Modified 1972-10-01T00:00:00

Description

Vulnerability Description

GCOS-III contains a flaw that may allow a local user to bypass system restrictions. By issuing a crafted sequence to the Assigned GO TO of the TS FOTRAN compiler, it is possible to manipulate the index register value to point to an alternate array. The alternate array could contain instructions that would be executed outside the security envelope.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

GCOS-III contains a flaw that may allow a local user to bypass system restrictions. By issuing a crafted sequence to the Assigned GO TO of the TS FOTRAN compiler, it is possible to manipulate the index register value to point to an alternate array. The alternate array could contain instructions that would be executed outside the security envelope.

References:

Other Advisory URL: http://seclab.cs.ucdavis.edu/projects/history/papers/ande72.pdf Generic Informational URL: http://en.wikipedia.org/wiki/GCOS