chuid could allow a remote attacker to change a file`s ownership

chuid-unauthorized-ownership-change (7976) The risk level is classified as MediumMedium Risk

Description:

The chuid utility could allow a remote attacker to change the ownership of a file outside of the designated upload directory by using "dot dot" sequences (..) when requesting a file.


Consequences:

Gain Privileges

Remedy:

Upgrade to the latest version of chuid (1.3 or later), available from the Scott Parish.net Web site. See References.

References:

  • BugTraq Mailing List, Mon Jan 21 2002 - 14:24:59 CST: security vulnerability in chuid.
  • Scott Parish.net Web site: Scripts and Programs.
  • BID-3937: CHUID Upload Directory Escaping File Owner Changing Vulnerability
  • BID-3938: CHUID Privileged File Owner Changing Vulnerability
  • CVE-2002-0144: Directory traversal vulnerability in chuid 1.2 and earlier allows remote attackers to change the ownership of files outside of the upload directory via a .. (dot dot) attack.
  • CVE-2002-0145: chuid 1.2 and earlier does not properly verify the ownership of files that will be changed, which allows remote attackers to change files owned by other users, such as root.
  • OSVDB ID: 8987: chuid Traversal Arbitrary File Ownership Manipulation

Platforms Affected:

  • Scott Parish chuid prior to 1.3

Reported:

Jan 21, 2002

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email ignore thisxforceignore this@ignore thisus.ignore thisibm.comignore this

Return to the main page