|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200501-44] ncpfs: Multiple vulnerabilities Vulnerability Scan
Vulnerability Scan Summary ncpfs: Multiple vulnerabilities
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200501-44
(ncpfs: Multiple vulnerabilities)
Erik Sjolund discovered two vulnerabilities in the programs
bundled with ncpfs: there is a potentially exploitable buffer overflow
in ncplogin (CVE-2005-0014), and due to a flaw in nwclient.c, utilities
using the NetWare client functions insecurely access files with
elevated rights (CVE-2005-0013).
Impact
The buffer overflow might allow a malicious remote NetWare server
to execute arbitrary code on the NetWare client. Furthermore, a local
attacker may be able to create links and access files with elevated
rights using SUID ncpfs utilities.
Workaround
There is no known workaround at this time.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0013
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0014
ftp://platan.vc.cvut.cz/pub/linux/ncpfs/Changes-2.2.6
Solution:
All ncpfs users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-fs/ncpfs-2.2.6"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|