CVE-2008-0003

Опубликовано: 07 янв. 2008

Источник: redhat

Описание

Stack-based buffer overflow in the PAMBasicAuthenticator::PAMCallback function in OpenPegasus CIM management server (tog-pegasus), when compiled to use PAM and without PEGASUS_USE_PAM_STANDALONE_PROC defined, might allow remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2007-5360.

Меры по смягчению последствий

The tog-pegasus package is not installed by default on Red Hat Enterprise Linux.
tog-pegasus supplied by Red Hat binds only to one port (as plain http is disabled), port 5989. The default firewall installed by Red Hat Enterprise Linux will block remote access to this port. In normal use it's unlikely you'd want to have this port accessible outside of an intranet anyway, and it's likely to be blocked by enterprise border firewalls. However if tog-pegasus has been installed and unblocked through the fireware, the Red Hat Security Response Team believes that it would still be hard to remotely exploit this issue to execute arbitrary code due to the default SELinux targeted policy on Enterprise Linux 4 and 5, and the SELinux memory protections enabled by default on Enterprise Linux 5.

Ссылки на источники

Дополнительная информация

Статус:

Critical

Дефект:

CWE-121

https://bugzilla.redhat.com/show_bug.cgi?id=426578tog-pegasus pam authentication buffer overflow

Связанные уязвимости

CVE-2008-0003

nvd

больше 17 лет назад

GHSA-9px5-84gc-9hrq

github

около 3 лет назад

ELSA-2008-0002

oracle-oval

больше 17 лет назад

ELSA-2008-0002: Critical: tog-pegasus security update (CRITICAL)

BDU:2015-07625

fstec

больше 17 лет назад

Уязвимость операционной системы Red Hat Enterprise Linux, позволяющая удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

BDU:2015-07624

fstec

больше 17 лет назад