Sun PC NetLink slsadmin insecure permissions
| sun-pcnetlink-slsadmin-insecure (23853) |  Medium Risk |
Description:
Sun PC NetLink could allow a local attacker to create or overwrite arbitrary files on the system, caused by insecure permissions on the /etc/init.d/slsadmin script. An attacker could exploit this vulnerability to gain elevated privileges on the system.
Consequences:
Other
Remedy:
Apply the patch for this vulnerability, as listed in Sun Alert ID: 102117. See References.
References:
- Sun Alert ID: 102117: Security Vulnerability in PC Netlink 2.0 "slsadmin" May Allow Files to be Opened Insecurely.
- BID-16059: Sun Solaris PC NetLink Insecure Permissions Vulnerability
- CVE-2005-4552: The (1) slsmgr and (2) slsadmin programs in Sun Solaris PC NetLink 2.0 create temporary files insecurely, which allows local users to gain privileges.
- OSVDB ID: 22045: Solaris PC NetLink slsmgr Symlink Arbitrary File Overwrite
- SA18230: Sun Solaris PC NetLink Insecure File Handling Vulnerability
- SECTRACK ID: 1015408: PC NetLink `slsmgr` Unsafe Temporary Files Lets Local Users Gain Elevated Privileges
- SECTRACK ID: 1015409: PC NetLink `slsadmin` Unsafe Temporary Files Lets Local Users Gain Elevated Privileges
- VUPEN/ADV-2005-3083: Sun Solaris PC Netlink slsadmin and slsmgr Local Vulnerabilities
Platforms Affected:
- Sun Solaris 7.0 SPARC
- Sun Solaris 8 SPARC
- Sun Solaris 9 SPARC
- Sun Solaris PC NetLink 2.0
Reported:
Dec 23, 2005
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net