Linuxconf本地环境变量缓冲区溢出漏洞。-安全小百科

Linuxconf本地环境变量缓冲区溢出漏洞。

漏洞ID	1106951	漏洞类型	缓冲区溢出
发布时间	2002-08-28	更新时间	2005-10-20
CVE编号	CVE-2002-1506	CNNVD-ID	CNNVD-200304-014
漏洞平台	Linux	CVSS评分	7.2

|漏洞来源

https://www.exploit-db.com/exploits/21763
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200304-014

|漏洞详情

Linuxconf1.28r4之前版本存在缓冲区溢出漏洞。本地用户借助超长环境变量执行任意代码。该漏洞溢出一个已产生的错误字符串。

|漏洞EXP

source: http://www.securityfocus.com/bid/5585/info
  
Linuxconf is a Linux configuration utility from Solucorp. It is typically installed as a setuid root utility for the management and configuration of Linux operating systems.
  
A buffer overflow vulnerability has been reported for Linuxconf. The vulnerability is due to insufficent bounds checking of the LINUXCONF_LANG environment variable. An attacker who sets the LINUXCONF_LANG environment variable with an overly large string will be able to cause the buffer overflow condition. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/21763.tar.gz

|参考资料

来源:BID
名称:5585
链接:http://www.securityfocus.com/bid/5585
来源:XF
名称:linuxconf-linuxconflang-env-bo(9980)
链接:http://www.iss.net/security_center/static/9980.php
来源:BUGTRAQ
名称:20020828iDEFENSESecurityAdvisory:Linuxconflocallyexploitablebufferoverflow
链接:http://archives.neohapsis.com/archives/bugtraq/2002-08/0304.html
来源:VULNWATCH
名称:20020828iDEFENSESecurityAdvisory:Linuxconflocallyexploitablebufferoverflow
链接:http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0093.html
来源:www.solucorp.qc.ca
链接:http://www.solucorp.qc.ca/changes.hc?projet=linuxconf&version;=1.28r4

相关推荐: Ikonboard User Profile Photo URI HTML Injection Vulnerability

Ikonboard User Profile Photo URI HTML Injection Vulnerability 漏洞ID 1101115 漏洞类型 Input Validation Error 发布时间 2002-12-09 更新时间 2002-1…

文章版权归作者所有，未经允许请勿转载。

THE END