Sysinternals PsTools Share Mapping Privilege Escalation

2004-07-15T08:18:35
ID OSVDB:8140
Type osvdb
Reporter Alan Ridgeway()
Modified 2004-07-15T08:18:35

Description

Vulnerability Description

PsTools contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a legitimate user gains administrative access using one of the tools, and then the tool fails to close the $IPC or $ADMIN share on exit. This flaw may lead to a loss of integrity, as a malicious user can re-use this connection.

Solution Description

Upgrade to version 2.05 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

PsTools contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a legitimate user gains administrative access using one of the tools, and then the tool fails to close the $IPC or $ADMIN share on exit. This flaw may lead to a loss of integrity, as a malicious user can re-use this connection.

References:

Vendor URL: http://www.sysinternals.com/ Security Tracker: 1010737 Secunia Advisory ID:12108 Packet Storm: http://packetstormsecurity.org/0407-advisories/pstoolsVuln.txt Other Advisory URL: http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=28304 ISS X-Force ID: 16743 CVE-2004-2730 Bugtraq ID: 10759