Sun Licensing Manager符号链接漏洞

Sun Licensing Manager符号链接漏洞

漏洞ID 1105715 漏洞类型 竞争条件
发布时间 2000-02-21 更新时间 2005-07-27
图片[1]-Sun Licensing Manager符号链接漏洞-安全小百科CVE编号 CVE-2000-0210
图片[2]-Sun Licensing Manager符号链接漏洞-安全小百科CNNVD-ID CNNVD-200002-061
漏洞平台 Solaris CVSS评分 1.2
|漏洞来源
https://www.exploit-db.com/exploits/19757
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200002-061
|漏洞详情
SunFlexLicenseManager(FlexLM)中lit程序跟随符号链接。本地用户借助此漏洞可以修改任意文件。
|漏洞EXP
source: http://www.securityfocus.com/bid/998/info

A vulnerability exists in the installation of licenses for Sun's WorkShop 5.0 compilers, and other Sun products which use the FlexLM license management system. As part of the installation process, the 'lit' program is run. This program insecurely creates files in /var/tmp. This can be used to create files owned by root, with known contents. The file will be created with root's umask, which by default is 0022.

Lit is not part of Globetrotter's FlexLM distribution. It is a license installation tool supplied by Sun for convenience purposes. This vulnerability does not represent a vulnerability in lmgrd, but a flaw in the license installation process. Running lmgrd as a user other than root, while a good idea, will not eliminate this problem.

ln -sf /.rhost /var/tmp/license_errors
|参考资料

来源:BID
名称:998
链接:http://www.securityfocus.com/bid/998

相关推荐: Netscape Communicator Password Disclosure Weakness

Netscape Communicator Password Disclosure Weakness 漏洞ID 1100780 漏洞类型 Configuration Error 发布时间 2003-02-28 更新时间 2003-02-28 CVE编号 N/A…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享