Info

Disclosure

Jun 18, 2003

Discovery

Unknown

Dates

Exploit

Jun 18, 2003

Solution

Unknown

Description

A local overflow exists in xpcd. The xpcd fails to check the boundary of the HOME environment variable, resulting in a buffer overflow. By sending a long string to $Home, a local attacker can overflow the buffer and execute arbitrary code on the server with elevated privileges, resulting in a loss of integrity.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Upgrade to version 2.08-8woody1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

xpcd

2.0.8

References

Secunia Advisory ID: 11750 9485
ISS X-Force ID: 12357
CVE ID: 2003-0649 (see also: NVD)
Bugtraq ID: 8370
Vendor Specific Advisory URL: http://www.debian.org/security/2003/dsa-368
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:053
Generic Exploit URL: http://www.securiteam.com/exploits/5CP0F2AAAU.html

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218