Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

ecl-channel.adv

🗓️ 24 Nov 2004 00:00:00Reported by ECL TeamType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 32 Views

Critical privilege escalation vulnerabilities in W-Channel embedded Linux affect all versions below 1.54.

Code
` [ ECL Security R&D ]  
Privilege escalation vulnerabilities in W-Channel embedded linux  
+----------------------------------------------------------------+  
  
Type: Local  
Impact: Critical  
Affected versions: all versions below v1.54  
  
  
Product description:  
-------------------+  
  
Read http://www.tc-ide.com/eng/tcs-index.htm  
  
  
Summary:  
-------+  
  
Local user input handling vulnerabilities exist in WCI's   
TC-IDE Embedded Linux that allow local users with access to the   
tools provided with the system to spawn a root console,  
gaining full control over the running Linux operating system.  
In corporate environments where this product is being used,  
such vulnerabilities could cause disastrous effects, all users  
are encouraged to update to the latest firmware ASAP.  
  
  
Details:  
-------+  
  
We've found three methods of exploitation, explained below:  
  
1) In the Net Tools dialog, type ";crxvt&" (without the quotes),  
and click on Discover. A root shell within a virtual terminal   
should appear.  
  
2) In the PPPoE dailer GUI, type the same as above in the  
username field, and click connect.  
  
3) In Opera, click on Menu, then Preferences. In E-mail,   
mark the "Use specific e-mail client" radio button,   
and type "/bin/dillo" (without the quotes) in the textbox below.   
Apply the settings, and close this menu. In the main window,   
click on Mail, then Compose. The dillo browser window should   
now be launched. Point it to the following address:   
"http://localhost/cgi-bin/mycomputer.cgi". Go to the Control Panel,   
then User Desktop. Enable "My Computer", then restart your desktop.   
You should now have Adminitrator access to most of the settings.  
  
  
Vendor correspondence:  
---------------------+  
  
Vendor informed: 15/10/04  
Vendor reply: 17/10/04  
Vendor fix release: 8/11/04  
  
  
Fix:  
---+  
  
The security problems have been fixed and marked as v1.54 build,  
Users should contact W-Channel for information on how to obtain the latest firmware.  
  
  
Contact:  
-------+  
  
Yuri Gushin Alex Behar Valentin Slalov  
[email protected] [email protected] [email protected]  
PGP: 0xFCE10121 PGP: 0x6896DEAD PGP: 0xA552D63B  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
24 Nov 2004 00:00Current
7.4High risk
Vulners AI Score7.4
privilege escalationembedded linuxcritical vulnerabilitieslocal user accessupdate firmware.
32