GATOS xatitv program allows elevated privileges
| gatos-xatitv-gain-privileges (16273) |  High Risk |
Description:
GATOS could allow a local attacker to gain elevated privileges, caused by a vulnerability in xatitv, one of the programs in the GATOS package. xatitv, which is installed setuid to allow direct access to video hardware, drops root privileges after initialization is successful. If the configuration file is removed, xatitv will launch the configuration program using the system function without properly checking user supplied input. A local attacker could exploit this vulnerability to execute arbitrary commands on the system with root privileges.
Consequences:
Gain Privileges
Remedy:
For Debian GNU/Linux 3.0 (woody):
Upgrade to the latest GATOS package (0.0.5-6 or later), as listed in DSA-509-1. See References.
References:
- SourceForge.net: SourceForge.net: Project Info - GATOS.
- BID-10437: Gatos xatitv Missing Configuration File Privilege Escalation Vulnerability
- CVE-2004-0395: The xatitv program in the gatos package does not properly drop root privileges when the configuration file does not exist, which allows local users to execute arbitrary commands via shell metacharacters in a system call.
- DSA-509: gatos -- privilege escalation
Platforms Affected:
- Debian Debian Linux 3.0
- GATOS GATOS
Reported:
May 30, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net