Boletines de Vulnerabilidades |
Sperl permite sobrescribir archivos |
|
Clasificación de la vulnerabilidad |
|
Propiedad | Valor |
Nivel de Confianza | Oficial |
Impacto | Ocultacion del rastro |
Dificultad | Principiante |
Requerimientos del atacante | Acceso remoto con cuenta |
Información sobre el sistema |
|
Propiedad | Valor |
Fabricante afectado | GNU/Linux |
Software afectado | sperl |
Descripción |
|
Se ha descubierto una vulnerabilidad en sperl, el "wrapper" utilizado por Perl para ejecutar programas setuid. La vulnerabilidad reside en que un usuario puede especificar en que archivo se guardará la información de debug que genera un script en perl mediante la variable de entorno PERLIO_DEBUG. La explotación de esta vulnerabilidad podría permitir a un atacante local sobrescribir archivos del sistema con privilegios de root. |
|
Solución |
|
Actualización de software Red Hat Linux Red Hat Desktop (v. 3) SRPMS perl-5.8.0-89.10.src.rpm IA-32 perl-5.8.0-89.10.i386.rpm perl-CGI-2.81-89.10.i386.rpm perl-CPAN-1.61-89.10.i386.rpm perl-DB_File-1.804-89.10.i386.rpm perl-suidperl-5.8.0-89.10.i386.rpm x86_64 perl-5.8.0-89.10.i386.rpm perl-5.8.0-89.10.x86_64.rpm perl-CGI-2.81-89.10.x86_64.rpm perl-CPAN-1.61-89.10.x86_64.rpm perl-DB_File-1.804-89.10.x86_64.rpm perl-suidperl-5.8.0-89.10.x86_64.rpm https://rhn.redhat.com/ Red Hat Enterprise Linux AS (v. 3) SRPMS perl-5.8.0-89.10.src.rpm IA-32 perl-5.8.0-89.10.i386.rpm perl-CGI-2.81-89.10.i386.rpm perl-CPAN-1.61-89.10.i386.rpm perl-DB_File-1.804-89.10.i386.rpm perl-suidperl-5.8.0-89.10.i386.rpm IA-64 perl-5.8.0-89.10.i386.rpm perl-5.8.0-89.10.ia64.rpm perl-CGI-2.81-89.10.ia64.rpm perl-CPAN-1.61-89.10.ia64.rpm perl-DB_File-1.804-89.10.ia64.rpm perl-suidperl-5.8.0-89.10.ia64.rpm PPC perl-5.8.0-89.10.ppc.rpm perl-5.8.0-89.10.ppc64.rpm perl-CGI-2.81-89.10.ppc.rpm perl-CPAN-1.61-89.10.ppc.rpm perl-DB_File-1.804-89.10.ppc.rpm perl-suidperl-5.8.0-89.10.ppc.rpm s390 perl-5.8.0-89.10.s390.rpm perl-CGI-2.81-89.10.s390.rpm perl-CPAN-1.61-89.10.s390.rpm perl-DB_File-1.804-89.10.s390.rpm perl-suidperl-5.8.0-89.10.s390.rpm s390x perl-5.8.0-89.10.s390.rpm perl-5.8.0-89.10.s390x.rpm perl-CGI-2.81-89.10.s390x.rpm perl-CPAN-1.61-89.10.s390x.rpm perl-DB_File-1.804-89.10.s390x.rpm perl-suidperl-5.8.0-89.10.s390x.rpm x86_64 perl-5.8.0-89.10.i386.rpm perl-5.8.0-89.10.x86_64.rpm perl-CGI-2.81-89.10.x86_64.rpm perl-CPAN-1.61-89.10.x86_64.rpm perl-DB_File-1.804-89.10.x86_64.rpm perl-suidperl-5.8.0-89.10.x86_64.rpm https://rhn.redhat.com/ Red Hat Enterprise Linux ES (v. 3) SRPMS perl-5.8.0-89.10.src.rpm IA-32 perl-5.8.0-89.10.i386.rpm perl-CGI-2.81-89.10.i386.rpm perl-CPAN-1.61-89.10.i386.rpm perl-DB_File-1.804-89.10.i386.rpm perl-suidperl-5.8.0-89.10.i386.rpm IA-64 perl-5.8.0-89.10.i386.rpm perl-5.8.0-89.10.ia64.rpm perl-CGI-2.81-89.10.ia64.rpm perl-CPAN-1.61-89.10.ia64.rpm perl-DB_File-1.804-89.10.ia64.rpm perl-suidperl-5.8.0-89.10.ia64.rpm x86_64 perl-5.8.0-89.10.i386.rpm perl-5.8.0-89.10.x86_64.rpm perl-CGI-2.81-89.10.x86_64.rpm perl-CPAN-1.61-89.10.x86_64.rpm perl-DB_File-1.804-89.10.x86_64.rpm perl-suidperl-5.8.0-89.10.x86_64.rpm https://rhn.redhat.com/ Red Hat Enterprise Linux WS (v. 3) SRPMS perl-5.8.0-89.10.src.rpm IA-32 perl-5.8.0-89.10.i386.rpm perl-CGI-2.81-89.10.i386.rpm perl-CPAN-1.61-89.10.i386.rpm perl-DB_File-1.804-89.10.i386.rpm perl-suidperl-5.8.0-89.10.i386.rpm IA-64 perl-5.8.0-89.10.i386.rpm perl-5.8.0-89.10.ia64.rpm perl-CGI-2.81-89.10.ia64.rpm perl-CPAN-1.61-89.10.ia64.rpm perl-DB_File-1.804-89.10.ia64.rpm perl-suidperl-5.8.0-89.10.ia64.rpm x86_64 perl-5.8.0-89.10.i386.rpm perl-5.8.0-89.10.x86_64.rpm perl-CGI-2.81-89.10.x86_64.rpm perl-CPAN-1.61-89.10.x86_64.rpm perl-DB_File-1.804-89.10.x86_64.rpm perl-suidperl-5.8.0-89.10.x86_64.rpm https://rhn.redhat.com/ Linux Mandrake Mandrakelinux 9.2 x86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/9.2/RPMS/perl-5.8.1-0.RC4.3.3.92mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/9.2/RPMS/perl-base-5.8.1-0.RC4.3.3.92mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/9.2/RPMS/perl-devel-5.8.1-0.RC4.3.3.92mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/9.2/RPMS/perl-doc-5.8.1-0.RC4.3.3.92mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/9.2/SRPMS/perl-5.8.1-0.RC4.3.3.92mdk.src.rpm AMD64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/9.2/RPMS/perl-5.8.1-0.RC4.3.3.92mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/9.2/RPMS/perl-base-5.8.1-0.RC4.3.3.92mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/9.2/RPMS/perl-devel-5.8.1-0.RC4.3.3.92mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/9.2/RPMS/perl-doc-5.8.1-0.RC4.3.3.92mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/9.2/SRPMS/perl-5.8.1-0.RC4.3.3.92mdk.src.rpm Mandrakelinux 10.0 x86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.0/RPMS/perl-5.8.3-5.3.100mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.0/RPMS/perl-base-5.8.3-5.3.100mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.0/RPMS/perl-devel-5.8.3-5.3.100mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.0/RPMS/perl-doc-5.8.3-5.3.100mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.0/SRPMS/perl-5.8.3-5.3.100mdk.src.rpm AMD64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/10.0/RPMS/perl-5.8.3-5.3.100mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/10.0/RPMS/perl-base-5.8.3-5.3.100mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/10.0/RPMS/perl-devel-5.8.3-5.3.100mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/10.0/RPMS/perl-doc-5.8.3-5.3.100mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/10.0/SRPMS/perl-5.8.3-5.3.100mdk.src.rpm Mandrakelinux 10.1 x86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/RPMS/perl-5.8.5-3.3.101mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/RPMS/perl-base-5.8.5-3.3.101mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/RPMS/perl-devel-5.8.5-3.3.101mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/RPMS/perl-doc-5.8.5-3.3.101mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/SRPMS/perl-5.8.5-3.3.101mdk.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/RPMS/perl-5.8.5-3.3.101mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/RPMS/perl-base-5.8.5-3.3.101mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/RPMS/perl-devel-5.8.5-3.3.101mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/RPMS/perl-doc-5.8.5-3.3.101mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/SRPMS/perl-5.8.5-3.3.101mdk.src.rpm Mandrake Corporate Server 2.1 x86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/2.1/RPMS/perl-5.8.0-14.4.C21mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/2.1/RPMS/perl-base-5.8.0-14.4.C21mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/2.1/RPMS/perl-devel-5.8.0-14.4.C21mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/2.1/RPMS/perl-doc-5.8.0-14.4.C21mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/2.1/SRPMS/perl-5.8.0-14.4.C21mdk.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/2.1/RPMS/perl-5.8.0-14.4.C21mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/2.1/RPMS/perl-base-5.8.0-14.4.C21mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/2.1/RPMS/perl-devel-5.8.0-14.4.C21mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/2.1/RPMS/perl-doc-5.8.0-14.4.C21mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/2.1/SRPMS/perl-5.8.0-14.4.C21mdk.src.rpm Mandrake Corporate Server 3.0 x86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/3.0/RPMS/perl-5.8.3-5.3.C30mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/3.0/RPMS/perl-base-5.8.3-5.3.C30mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/3.0/RPMS/perl-devel-5.8.3-5.3.C30mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/3.0/RPMS/perl-doc-5.8.3-5.3.C30mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/3.0/SRPMS/perl-5.8.3-5.3.C30mdk.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/3.0/RPMS/perl-5.8.3-5.3.C30mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/3.0/RPMS/perl-base-5.8.3-5.3.C30mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/3.0/RPMS/perl-devel-5.8.3-5.3.C30mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/3.0/RPMS/perl-doc-5.8.3-5.3.C30mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/3.0/SRPMS/perl-5.8.3-5.3.C30mdk.src.rpm SUSE Linux Actualizar mediante YaST Online Update Red Hat Linux Red Hat Desktop (v. 4) Red Hat Enterprise Linux AS (v. 4) Red Hat Enterprise Linux ES (v. 4) Red Hat Enterprise Linux WS (v. 4) https://rhn.redhat.com/ IBM AIX 5.3 - APAR IY68463 AIX 5.2 - APAR IY68464 http://www-1.ibm.com/servers/eserver/support/pseries/aixfixes.html |
|
Identificadores estándar |
|
Propiedad | Valor |
CVE | CAN-2005-0155 |
BID | |
Recursos adicionales |
|
Red Hat Security Advisory RHSA-2005:105-11 https://rhn.redhat.com/errata/RHSA-2005-105.html Mandrakesoft Security Advisories MDKSA-2005:031 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2005:031 SUSE Security Summary Report SUSE-SR:2005:004 http://www.novell.com/linux/security/advisories/2005_04_sr.html Red Hat Security Advisory RHSA-2005:103-04 https://rhn.redhat.com/errata/RHSA-2005-103.html IBM SECURITY ADVISORY https://techsupport.services.ibm.com/server/pseries.subscriptionSvcs?mode=7&heading=AIX53&topic=SECURITY&month=200502&bulletin=datafile090901&date=20050228&label=A+local+user+may+gain+root+privileges+through+the+perl+interpreter. |
Histórico de versiones |
||
Versión | Comentario | Fecha |
1.0 | Aviso emitido | 2005-02-08 |
1.1 | Aviso emitido por Mandrake (MDKSA-2005:031) | 2005-02-09 |
1.2 | Aviso emitido por SUSE (SUSE-SR:2005:004) | 2005-02-14 |
1.3 | Aviso emitido por Red Hat (RHSA-2005:103-04) | 2005-02-16 |
1.4 | Aviso emitido por IBM | 2005-02-21 |
1.5 | Aviso actualizado por IBM | 2005-03-03 |
1.6 | Aviso actualizado por IBM | 2005-06-13 |