FreeBSD ja-elvis port buffer overflow
| ja-elvis-elvrec-bo (6074) |  High Risk |
Description:
Ja-elvis port is vulnerable to a buffer overflow in the elvrec utility. Ja-elvis is a localized version of the elvis vi editor. The elvrec utility is installed setuid root. A local attacker can overflow a buffer in elvrec to gain root privileges on the system.
The ja-elvis port is part of the FreeBSD ports collection included with FreeBSD versions 3.5.1 and 4.2.
Platforms Affected:
- FreeBSD, FreeBSD 3.5.1
- FreeBSD, FreeBSD 4.2
- FreeBSD, ja-elvis 1.8.4
Remedy:
Upgrade to the latest version of ja-elvis (1.8.4_1 dated 2001-01-28 or later), as listed in FreeBSD, Inc. Security Advisory FreeBSD-SA-01:21. See References.
Consequences:
Gain Privileges
References:
- FreeBSD Security Advisory FreeBSD-SA-01:21, ja-elvis and ko-helvis ports contain a local root compromise at http://archives.neohapsis.com/archives/freebsd/2001-02/0082.html.
- BID-2378: Elvis Local Root Compromise Vulnerability
- CVE-2001-0220: Buffer overflow in ja-elvis and ko-helvis ports of elvis allow local users to gain root privileges.
Reported:
Feb 07, 2001
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net