CVE-2002-1013
CVSS7.2
发布时间 :2002-10-04 00:00:00
修订时间 :2008-09-05 16:29:32
NMCOE    

[原文]Buffer overflow in traffic_manager for Inktomi Traffic Server 4.0.18 through 5.2.2, Traffic Edge 1.1.2 and 1.5.0, and Media-IXT 3.0.4 allows local users to gain root privileges via a long -path argument.


[CNNVD]Inktomi Traffic Server Traffic Edge Media-IXT特权提升漏洞(CNNVD-200210-225)

        Inktomi Traffic Server 4.0.18版本到5.2.2版本,Traffic Edge 1.1.2版本和1.5.0版本,以及Media-IXT 3.0.4版本的traffic_manager存在缓冲区溢出漏洞。本地用户可以借助超长-path参数提升根特权。

- CVSS (基础分值)

CVSS分值: 7.2 [严重(HIGH)]
机密性影响: COMPLETE [完全的信息泄露导致所有系统文件暴露]
完整性影响: COMPLETE [系统完整性可被完全破坏]
可用性影响: COMPLETE [可能导致系统完全宕机]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: LOCAL [漏洞利用需要具有物理访问权限或本地帐户]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:inktomi:traffic_server:5.2.2
cpe:/a:inktomi:traffic_edge:1.5.0
cpe:/a:inktomi:traffic_edge:1.1.2
cpe:/a:inktomi:traffic_server:5.1.3
cpe:/a:inktomi:traffic_server:5.2.1
cpe:/a:inktomi:traffic_server:4.0.20
cpe:/a:inktomi:traffic_server:5.2.0r
cpe:/a:inktomi:media-ixt:3.0.4
cpe:/a:inktomi:traffic_server:4.0.18

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1013
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-1013
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200210-225
(官方数据源) CNNVD

- 其它链接及资源

http://www.securityfocus.com/bid/5098
(VENDOR_ADVISORY)  BID  5098
http://www.iss.net/security_center/static/9465.php
(VENDOR_ADVISORY)  XF  inktomi-trafficserver-manager-bo(9465)
http://support.inktomi.com/kb/070202-003.html
(UNKNOWN)  CONFIRM  http://support.inktomi.com/kb/070202-003.html
http://archives.neohapsis.com/archives/bugtraq/2002-07/0023.html
(UNKNOWN)  BUGTRAQ  20020702 CORE-20020620: Inktomi Traffic Server Buffer Overflow

- 漏洞信息

Inktomi Traffic Server Traffic Edge Media-IXT特权提升漏洞
高危 缓冲区溢出
2002-10-04 00:00:00 2005-05-02 00:00:00
本地  
        Inktomi Traffic Server 4.0.18版本到5.2.2版本,Traffic Edge 1.1.2版本和1.5.0版本,以及Media-IXT 3.0.4版本的traffic_manager存在缓冲区溢出漏洞。本地用户可以借助超长-path参数提升根特权。

- 公告与补丁

        

- 漏洞信息 (21580)

Inktomi Traffic Server 4/5 Traffic_Manager Path Argument Buffer Overflow (EDBID:21580)
linux dos
2002-06-25 Verified
0 Juliano Rizzo
N/A [点击下载]
source: http://www.securityfocus.com/bid/5098/info

Inktomi Traffic Server is a transparent web caching application. It is designed for use with Unix and Linux variants as well as Microsoft Windows operating environments.

A buffer overflow vulnerability has been reported in the Inktomi Traffic Server. The vulnerability occurs in the traffic_manager binary included with Inktomi Traffic Server.

Reportedly, executing traffic_manager with an excessively long commandline argument will cause the buffer overflow condition. As traffic_manager is a setuid root binary, it is possible for a remote attacker to obtain root, or superuser, privileges on a compromised system. 

traffic_manager -path `perl -e 'print "A"x1720'` < 		

- 漏洞信息

5030
Inktomi Traffic Server traffic_manager Overflow
Input Manipulation
Loss of Integrity

- 漏洞描述

Unknown or Incomplete

- 时间线

2004-04-09 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete
 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站