[原文]Ecartis (formerly Listar) 1.0.0 in snapshot 20020125 and earlier does not properly drop privileges when Ecartis is installed setuid-root, "lock-to-user" is not set, and ecartis is called by certain MTA's, which could allow local users to gain privileges.
Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: firstname.lastname@example.org .
Published by Janusz Niewiadomski (email@example.com) and Wojciech Purczynski (firstname.lastname@example.org).
Listar Listar 0.129 a
Debian Linux 2.2 sparc
Debian Linux 2.2 powerpc
Debian Linux 2.2 IA-32
Debian Linux 2.2 arm
Debian Linux 2.2 alpha
Debian Linux 2.2 68k
Debian Linux 2.2
Listar Listar 0.127 a
Listar Listar 0.126 a
Ecartis Ecartis 1.0 .0 snapshot 20020125
Ecartis Ecartis 1.0 .0 snapshot 20020121
Ecartis is the new name for the Listar software product. Listar is a mailing list management package for Linux, BSD, and other Unix like operating systems.
It has been reported that under some circumstances, Ecartis does not properly drop privileges. Specifically, this may happen when Ecartis is called by a non-root user. If additional Ecartis vulnerability exists, exploitation may result in consequences beyond those available to the non-privileged Ecartis user.
No exploit is required.
Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: email@example.com <mailto:firstname.lastname@example.org>.