Solaris x86 mkcookie Privilege Escalation Overflow

1998-12-03T00:00:00
ID OSVDB:8205
Type osvdb
Reporter OSVDB
Modified 1998-12-03T00:00:00

Description

Vulnerability Description

A local overflow exists in Solaris. The mkcookie utility fails to sanitize the $HOME environment variable, resulting in a buffer overflow. With a specially crafted request with machine code, a local attacker can cause a buffer overflow and execute arbitrary code with root privilege, resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

A local overflow exists in Solaris. The mkcookie utility fails to sanitize the $HOME environment variable, resulting in a buffer overflow. With a specially crafted request with machine code, a local attacker can cause a buffer overflow and execute arbitrary code with root privilege, resulting in a loss of integrity.

References:

Other Advisory URL: http://www.attrition.org/security/advisory/repsec/RSI.0012.12-03-98.SOLARIS.MKCOOKIE ISS X-Force ID: 1429 CVE-1999-0139