Open Motif diag_issue_diagnostic() buffer overflow

openmotif-diagissuediagnostic-bo (23388) The risk level is classified as HighHigh Risk

Description:

Open Motif is vulnerable to a buffer overflow in the diag_issue_diagnostic() function. A local or remote attacker could exploit this vulnerability by passing malicious data to the diag_issue_diagnostic() function using an application that is linked to the Open Motif library, which could possibly allow the execution of arbitrary code on the system with elevated privileges.

Platforms Affected:

  • Gentoo, Linux
  • Open Group, Open Motif 2.2.3
  • RedHat, Enterprise Linux 2.1 AS
  • RedHat, Enterprise Linux 2.1 ES
  • RedHat, Enterprise Linux 2.1 WS
  • RedHat, Enterprise Linux 3 AS
  • RedHat, Enterprise Linux 3 WS
  • RedHat, Enterprise Linux 3 ES
  • RedHat, Enterprise Linux 3 Desktop
  • RedHat, Enterprise Linux 4 Desktop
  • RedHat, Enterprise Linux 4 AS
  • RedHat, Enterprise Linux 4 ES
  • RedHat, Enterprise Linux 4 WS
  • RedHat, Linux Advanced Workstation 2.1 Itanium
  • RedHat, Network Satellite Server 4.2
  • RedHat, Network Satellite Server 5.0

Remedy:

For Red Hat Linux:
Refer to RHSA-2006:0272-8 for patch, upgrade, or suggested workaround information. See References.

For Gentoo Linux:
Refer to Gentoo Linux Security Announcement GLSA 2005-12-16 for patch, upgrade, or suggested workaround information. See References.

Consequences:

Gain Privileges

References:

  • Full-Disclosure Mailing List, Thu Dec 01 2005 - 20:59:05 CST, [xfocus-SD-051202]openMotif-libUil-Multiple_vulnerability at http://archives.neohapsis.com/archives/fulldisclosure/2005-12/0047.html.
  • Open Motif Web site, Open Motif -- OpenMotif -- Portal at http://www.opengroup.org/openmotif/.
  • ASA-2006-082: openmotif security update (RHSA-2006-0272)
  • BID-15678: Open Motif libUil Buffer Overflow Vulnerabilities
  • BID-15684: Open Motif libUil Diag_issue_diagnostic Buffer Overflow Vulnerability
  • BID-15686: Open Motif libUil Open_source_file Buffer Overflow Vulnerability
  • CVE-2005-3964: Multiple buffer overflows in libUil (libUil.so) in OpenMotif 2.2.3, and possibly other versions, allows attackers to execute arbitrary code via the (1) diag_issue_diagnostic function in UilDiags.c and (2) open_source_file function in UilSrcSrc.c.
  • GLSA-200512-16: OpenMotif, AMD64 x86 emulation X libraries: Buffer overflows in libUil library
  • RHSA-2006-0272: openmotif security update
  • RHSA-2008-0261: Moderate: Red Hat Network Satellite Server security update
  • RHSA-2008-0524: Low: Red Hat Network Satellite Server security update
  • SECTRACK ID: 1015303: Open Motif Buffer Overflows in diag_issue_diagnostic() and open_source_file() May Let Users Execute Arbitrary Code
  • VUPEN/ADV-2005-2709: MotifZone OpenMotif libUil Multiple Buffer Overflow Vulnerabilities

Reported:

Dec 01, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page