Multiple BSD fts Routines chdir Arbitrary Directory Access

2001-06-04T00:00:00
ID OSVDB:5466
Type osvdb
Reporter OSVDB
Modified 2001-06-04T00:00:00

Description

Vulnerability Description

Some BSD derived systems contain a flaw that may allow a malicious user to have actions performed in an unintended file system hierarchy. The issue is triggered when a directory is moved while a command is being executed. It is possible that the race condition may allow commands to run resulting in a loss of integrity.

Solution Description

Upgrade operating system to newer version, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds. FreeBSD users should upgrade to 4.3-STABLE after the correction date 2001-06-01. NetBSD users should upgrade to NetBSD-1.5 branch: 2001-08-22 (1.5.2 includes the fix) or NetBSD-current after the correction date 2001-07-09. OpenBSD users should upgrade to version 2.9 or OpenBSD-current after the correction date 2001-05-30.

Short Description

Some BSD derived systems contain a flaw that may allow a malicious user to have actions performed in an unintended file system hierarchy. The issue is triggered when a directory is moved while a command is being executed. It is possible that the race condition may allow commands to run resulting in a loss of integrity.

References:

Vendor Specific Solution URL: ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:40.fts.v1.1.asc Vendor Specific Solution URL: ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/029_fts.patch Vendor Specific Solution URL: ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2001-016.txt.asc Vendor Specific Advisory URL Keyword: Directory Traversal ISS X-Force ID: 8715 CVE-2001-1145 Bugtraq ID: 3205