SCO OpenServer uudecode Arbitrary File Overwrite

2004-07-29T10:34:58
ID OSVDB:8274
Type osvdb
Reporter OSVDB
Modified 2004-07-29T10:34:58

Description

Vulnerability Description

OpenServer contains a flaw in the in the /usr/bin/uudecode binary which does not verify if it is writing to a file, a symlink, or an open pipe. This flaw may allow a local attacker to overwrite arbitrary files through symbolic links, resulting in a loss of data integrity

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, OpenServer has released a patch to address this vulnerability.

Short Description

OpenServer contains a flaw in the in the /usr/bin/uudecode binary which does not verify if it is writing to a file, a symlink, or an open pipe. This flaw may allow a local attacker to overwrite arbitrary files through symbolic links, resulting in a loss of data integrity

References:

Secunia Advisory ID:12187 Other Advisory URL: ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.12 ISS X-Force ID: 9075 CVE-2002-0178 Bugtraq ID: 4742