3290 : KPopup main.cpp Format String Privilege Escalation
Printer | http://osvdb.org/3290 | Email This | Edit Vulnerability

Views This Week

Views All Time

Info

Last Modified

8 months ago

Percent Complete

90%

Disclosure

Oct 30, 2003

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Kpopup contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a malicous user passes a carefully crafted format string argument to the kpopup executable. This flaws may be abused to execute arbitrary code as the root user.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Upgrade to version 0.9.6pre1 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround: remove the SUID bit from the kpopup utility

Products

Gernot Stocker	KPopup	0.9.1
		0.9.5pre2

References

Secunia Advisory ID: 10105
ISS X-Force ID: 13540
CVE ID: 2003-1170 (see also: NVD)
Related OSVDB ID: 2742
Bugtraq ID: 8918
Other Advisory URL: http://archives.neohapsis.com/archives/bugtraq/2003-10/0288.html
Vendor URL: http://freshmeat.net/projects/kpopup/
http://www.henschelsoft.de/kpopup.html
Vendor Specific Advisory URL: http://www.henschelsoft.de/kpopup_history_en.html

Tools & Filters

Nessus	21390

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches

Views This Week

Views All Time

Info

Last Modified

Percent Complete

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Gernot Stocker

KPopup

References

Tools & Filters

Credit

Blogs

Comments