EMC Isilon OneFS Privilege Escalation Vulnerability

2017-12-14T00:00:00
ID 1337DAY-ID-29225
Type zdt
Reporter bot
Modified 2017-12-14T00:00:00

Description

EMC Isilon OneFS versions 7.x and 8.x suffer from a privilege escalation vulnerability. They contain an issue where a 'compadmin' user can potentially run restricted system commands with elevated (root) privilege on a cluster in compliance mode.

                                        
                                            EMC Isilon OneFS Privilege Escalation Vulnerability 

CVE Identifier: CVE-2017-14380

Severity Rating: CVSS v3 Base Score: 6.7 (AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)

Affected products:  
*  EMC Isilon OneFS 8.1.0.0
*  EMC Isilon OneFS 8.0.1.0 - 8.0.1.1
*  EMC Isilon OneFS 8.0.0.0 - 8.0.0.4
*  EMC Isilon OneFS 7.2.1.0 - 7.2.1.5
*  EMC Isilon OneFS 7.2.0.x
*  EMC Isilon OneFS 7.1.1.x

Summary:  
EMC Isilon OneFS  contains an issue where a 'compadmin' user can potentially run restricted system commands with elevated (root) privilege on a cluster in compliance mode.  

Details:  
A malicious compliance admin (compadmin) account user could exploit a vulnerability in isi_get_itrace or isi_get_profile maintenance scripts to run any shell script as system root on a cluster in compliance mode. This could potentially lead to an elevation of privilege for the compadmin user and violate compliance mode.

Resolution:  
The following versions of EMC Isilon OneFS resolve this vulnerability:
*  EMC Isilon OneFS 8.1.0.1
*  EMC Isilon OneFS 8.0.1.2
*  EMC Isilon OneFS 8.0.0.5
*  EMC Isilon OneFS 7.2.1.6

There are patches available for the following versions of EMC Isilon OneFS: 
*  EMC Isilon OneFS 8.0.1.1
*  EMC Isilon OneFS 8.0.0.4
*  EMC Isilon OneFS 7.2.1.5
*  EMC Isilon OneFS 7.1.1.11

EMC recommends that all customers upgrade to a version or patch containing the resolution at the earliest opportunity. 

Link to remedies:
Registered EMC Online Support customers can download OneFS installation files from the Downloads for Isilon OneFS page of EMC Online Support at https://support.emc.com/downloads/15209_Isilon-OneFS.

Patches are available here: 

* Patch-211403 for OneFS 8.0.1.1

https://download.emc.com/downloads/DL87131

* Patch-211402 for OneFS 8.0.0.4

https://download.emc.com/downloads/DL87130

* Patch-211400 for OneFS 7.2.1.5  

https://download.emc.com/downloads/DL87128

* Patch-211401 for OneFS 7.1.1.11

https://download.emc.com/downloads/DL87129

If you have any questions, contact EMC Support.

#  0day.today [2018-04-09]  #