Info

Disclosure

Mar 27, 2001

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

A local overflow exists in OpenServer. The lpforms command fails to validate user-supplied arguments resulting in a buffer overflow. With a specially crafted request consisting of more than 6240 characters, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Rumored / Private
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, SCO has released a patch to address this vulnerability.

Products

SCO Group, Inc.

OpenServer

5.0.6

References

Security Tracker: 1001179
CVE ID: 2001-0578 (see also: NVD)
Bugtraq ID: 2554
ISS X-Force ID: 6293
Vendor Specific Advisory URL: ftp://ftp.sco.com/pub/SSE/sse072c/sse072c.ltr
Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=98576624201006&w=2

Credit

KF - dotslashsnosoft.com - Secure Network Operations

Direct URL: http://osvdb.org/36218