Servers Alive gain privileges
| serversalive-gain-privileges (19715) |  High Risk |
Description:
Servers Alive could allow a local attacker to gain elevated privileges on the system. This vulnerability is caused by the execution of serversalive.exe, which allows the help function to be run with SYSTEM privileges. Assuming that Servers Alive is configured to be run as a service rather than its default setting to run as an application, a local attacker could use this to execute arbitrary commands on the system with SYSTEM level privileges.
Platforms Affected:
- Woodstone, Servers Alive 4.1
- Woodstone, Servers Alive 5.0
Remedy:
No remedy available as of July 4, 2009.
Consequences:
Gain Privileges
References:
- BugTraq Mailing List, Wed Mar 16 2005 - 10:54:35 CST , Servers Alive: Local Privilege Escalation at http://archives.neohapsis.com/archives/bugtraq/2005-03/0291.html.
- Woodstone Consulting and Development, Network Monitoring, free network monitor, SNMP monitoring, Woodstone Servers Alive at http://www.woodstone.nu.
- BID-12822: Woodstone Servers Alive Local Privilege Escalation Vulnerability
- CVE-2005-0352: Servers Alive 4.1 and 5.0, when running as a service, does not drop SYSTEM privileges before loading local manual under the help menu, which allows local users to gain privileges.
- SA14616: Servers Alive Privilege Escalation Vulnerability
Reported:
Mar 17, 2005
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net