|
Family: General --> Category: infos
SCO OpenServer multiple vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Checks the remote SCO OpenServer
Detailed Explanation for this Vulnerability Test
OpenServer 5.0.7, OpenServer 5.0.6, and OpenServer 5.0.5 are vulnerable
to two (2) distinct exploits. Namely,
1) Xsco can be locally exploited by any valid user in order to escalate
their rights to 'root'. The bug is due to improper input handling
when running the command line switch '-co'.
2) There is a vulnerability in the MIT-SHM extension within
all X servers that are running as root. Any user with local X access
can exploit the MIT-SHM extension and gain read/write access to any
shared memory segment on the system.
*** This test relied on the banner of the remote system
*** to acertain that it is a SCO Unix server, so this alert
*** might be a false positive
More information can be found at:
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0158
http://marc.theaimsgroup.com/?l=bugtraq&m=101776858410652&w=2
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0164
http://marc.theaimsgroup.com/?l=bugtraq&m=103547625009363&w=2
http://www.securityfocus.com/bid/4396
Solution: Install the patched binaries from
ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.26
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|