发布时间 :2001-05-03 00:00:00
修订时间 :2008-09-10 15:10:16

[原文]mandb in the man-db package before 2.3.16-3 allows local users to overwrite arbitrary files via the command line options (1) -u or (2) -c, which do not drop privileges and follow symlinks.

[CNNVD]Debian man-db可执行的覆盖漏洞(CNNVD-200105-074)

        man-db数据包2.3.16-3版本中mandb存在漏洞。本地用户借助超长命令行选项(1) -u或者(2) -c覆盖任意文件,该漏洞不降低特权并且跟随符号链接。

- CVSS (基础分值)

CVSS分值: 1.2 [轻微(LOW)]
机密性影响: NONE [对系统的机密性无影响]
完整性影响: PARTIAL [可能会导致系统文件被修改]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: HIGH [漏洞利用存在特定的访问条件]
攻击向量: LOCAL [漏洞利用需要具有物理访问权限或本地帐户]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/o:debian:debian_linux:2.2Debian Debian Linux 2.2

- OVAL (用于检测的技术细节)


- 官方数据库链接
(官方数据源) MITRE
(官方数据源) NVD
(官方数据源) CNNVD

- 其它链接及资源
(UNKNOWN)  BID  2720

- 漏洞信息

Debian man-db可执行的覆盖漏洞
低危 配置错误
2001-05-03 00:00:00 2005-10-20 00:00:00
        man-db数据包2.3.16-3版本中mandb存在漏洞。本地用户借助超长命令行选项(1) -u或者(2) -c覆盖任意文件,该漏洞不降低特权并且跟随符号链接。

- 公告与补丁

        man-db version corrects the problem.
        Progeny Debian 1.0
        Debian Linux 2.2

- 漏洞信息

man-db mandb Command Line Option Arbitrary File Overwrite

- 漏洞描述

Unknown or Incomplete

- 时间线

2001-05-03 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Debian man-db Executable Overwrite Vulnerability
Configuration Error 2720
No Yes
2001-05-03 12:00:00 2009-07-11 06:06:00
Reported to Bugtraq by Progeny Service Network in an advisory dated May 10, 2001.

- 受影响的程序版本

Progeny Debian 1.0
Debian Linux 2.2

- 漏洞讨论

man-db is the Debian utility used to display on-line help files.

Affected versions of this utility improperly set write permissions in manual page directories. The settings allow the invoking 'man' user to overwrite the mandb binary itself, potentially replacing it with malicious code.

Since mandb assumes the privilege level of the user running it, the possibility of a user replacing it with a hostile binary prior to its execution by a privileged user (including root) has serious security implications for the vulnerable host.

- 漏洞利用

Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: <>.

- 解决方案

man-db version corrects the problem.

Progeny Debian 1.0

Debian Linux 2.2

- 相关参考