rpc.pcnfsd su_popen() Function Remote Arbitrary Command Execution

1995-11-29T00:00:00
ID OSVDB:5743
Type osvdb
Reporter OSVDB
Modified 1995-11-29T00:00:00

Description

Vulnerability Description

pcnfs.d contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered during normal operation when file permissions are changed on a symbolic link to a restricted directory. The impact is that directories can become world writable.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, consult your vendor for a patch to address this vulnerability.

Short Description

pcnfs.d contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered during normal operation when file permissions are changed on a symbolic link to a restricted directory. The impact is that directories can become world writable.

References:

Vendor Specific Advisory URL Other Advisory URL: http://attrition.org/security/advisory/repsec/RSI.0008a.08-18-98.ALL.RPC_PCNFSD Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1995_4/0124.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1998_3/0590.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1998_3/0575.html Keyword: Avalon Security Research Keyword: RSI.0008a.08-18-98.ALL.RPC_PCNFSD ISS X-Force ID: 108 CVE-1999-0078 CERT: CA-1996-08