CVE-2004-1340
CVSS2.1
发布时间 :2005-01-26 00:00:00
修订时间 :2008-09-05 16:41:03
NMCOPS    

[原文]Debian GNU/Linux 3.0 installs the libpam-radius-auth package with the pam_radius_auth.conf set to be world-readable, which allows local users to obtain sensitive information.


[CNNVD]Debian libpam-radius-auth 信息泄露漏洞(CNNVD-200501-278)

        Debin是一个免费的Linux发行版。
        Debian GNU/Linux 3.0存在信息泄露漏洞。
        由于安装libpam-radius-auth包时,pam_radius_auth.conf设置为所有人可读,这使得本地用户可以获得敏感信息。

- CVSS (基础分值)

CVSS分值: 2.1 [轻微(LOW)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: LOCAL [漏洞利用需要具有物理访问权限或本地帐户]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/o:debian:debian_linux:3.0::hppa
cpe:/o:debian:debian_linux:3.0::mipsel
cpe:/o:debian:debian_linux:3.0::mips
cpe:/o:debian:debian_linux:3.0::ia-32
cpe:/o:debian:debian_linux:3.0::m68k
cpe:/o:debian:debian_linux:3.0::sparc
cpe:/o:debian:debian_linux:3.0::s-390
cpe:/o:debian:debian_linux:3.0::alpha
cpe:/o:debian:debian_linux:3.0::arm
cpe:/o:debian:debian_linux:3.0::ia-64
cpe:/o:debian:debian_linux:3.0::ppc
cpe:/o:debian:debian_linux:3.0Debian Debian Linux 3.0

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1340
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-1340
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200501-278
(官方数据源) CNNVD

- 其它链接及资源

http://xforce.iss.net/xforce/xfdb/19087
(VENDOR_ADVISORY)  XF  libpamradiusauth-insecure-permission(19087)
http://www.debian.org/security/2005/dsa-659
(VENDOR_ADVISORY)  DEBIAN  DSA-659
http://securitytracker.com/id?1013030
(UNKNOWN)  SECTRACK  1013030
http://secunia.com/advisories/14046
(UNKNOWN)  SECUNIA  14046

- 漏洞信息

Debian libpam-radius-auth 信息泄露漏洞
低危 配置错误
2005-01-26 00:00:00 2005-10-20 00:00:00
本地  
        Debin是一个免费的Linux发行版。
        Debian GNU/Linux 3.0存在信息泄露漏洞。
        由于安装libpam-radius-auth包时,pam_radius_auth.conf设置为所有人可读,这使得本地用户可以获得敏感信息。

- 公告与补丁

        目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
        http://www.debian.org/security/2005/dsa-659

- 漏洞信息 (F35909)

dsa-659.txt (PacketStormID:F35909)
2005-01-27 00:00:00
 
advisory
linux,debian
CVE-2004-1340,CVE-2005-0108
[点击下载]

Debian Security Advisory 659-1 - Two problems have been discovered in the libpam-radius-auth package, the PAM RADIUS authentication module. The configuration file gets installed world-readable and the same flaw that exists in mod_auth_radius for Apache is inherent in libpam-radius-auth as well.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 659-1                     security@debian.org
http://www.debian.org/security/                             Martin Schulze
January 26th, 2005                      http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : libpam-radius-auth
Vulnerability  : information leak, integer underflow
Problem-Type   : remote
Debian-specific: no
CVE ID         : CAN-2004-1340 CAN-2005-0108

Two problems have been discovered in the libpam-radius-auth package,
the PAM RADIUS authentication module.  The Common Vulnerabilities and
Exposures Project identifies the following problems:

CAN-2004-1340

    The Debian package accidently installed its configuration file
    /etc/pam_radius_auth.conf world-readable.  Since it may possibly
    contain secrets all local users are able to read them if the
    administrator hasn't adjusted file permissions.  This problem is
    Debian specific.

CAN-2005-0108

    Leon Juranic discoverd an integer underflow in the mod_auth_radius
    module for Apache which is also present in libpam-radius-auth.

For the stable distribution (woody) these problems have been fixed in
version 1.3.14-1.3.

For the unstable distribution (sid) these problems have been fixed in
version 1.3.16-3.

We recommend that you upgrade your libpam-radius-auth package.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.0 alias woody
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3.dsc
      Size/MD5 checksum:      633 685f1323a3b5848ccb548fe383c2647d
    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3.diff.gz
      Size/MD5 checksum:     4339 cdbeaff45c0477e017bb2926d72e258f
    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14.orig.tar.gz
      Size/MD5 checksum:    24709 3952a5de3ac960d03e437951f42e67e2

  Alpha architecture:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3_alpha.deb
      Size/MD5 checksum:    21606 a6ba05a3d785212a9b65720f29254988

  ARM architecture:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3_arm.deb
      Size/MD5 checksum:    19220 393e12c5b12e19b4f85f9efd2daa10cb

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3_i386.deb
      Size/MD5 checksum:    17496 183e9f999e643aeb407898c8aac3f7d4

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3_ia64.deb
      Size/MD5 checksum:    24672 d595102f5f85b8b1c403bf9fa5cceab7

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3_hppa.deb
      Size/MD5 checksum:    20238 f88620aba0ce73be9978d5e069af6391

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3_m68k.deb
      Size/MD5 checksum:    17140 4409cb32e00171b001a99a9c8a690679

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3_mips.deb
      Size/MD5 checksum:    18090 916e4b25e48fd01d6bdc2509d8089505

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3_mipsel.deb
      Size/MD5 checksum:    18310 1b20887306ee88f954aa159afb13889e

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3_powerpc.deb
      Size/MD5 checksum:    18394 29467c53c34a3f8745e640969e337a51

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3_s390.deb
      Size/MD5 checksum:    18690 2c2ea4437da4b44b14c65fffedc11673

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/libp/libpam-radius-auth/libpam-radius-auth_1.3.14-1.3_sparc.deb
      Size/MD5 checksum:    18328 b39b7c1da80afa286c979e37b74c846e


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFB92xtW5ql+IAeqTIRAgruAKCO7YGYYHqUpUSi6BzAI7+pNJFyYACfdVPR
xH9m9nOazPLog+4nN5Zr8IE=
=prjB
-----END PGP SIGNATURE-----

    

- 漏洞信息

13203
Debian pam_radius_auth.conf Local Information Disclosure
Information Disclosure
Loss of Confidentiality

- 漏洞描述

Unknown or Incomplete

- 时间线

2005-01-27 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Debian Pam Radius Auth File Information Disclosure Vulnerability
Configuration Error 12375
No Yes
2005-01-26 12:00:00 2009-07-12 10:06:00
This vulnerability was announced by the vendor.

- 受影响的程序版本

Debian Linux 3.0 sparc
Debian Linux 3.0 s/390
Debian Linux 3.0 ppc
Debian Linux 3.0 mipsel
Debian Linux 3.0 mips
Debian Linux 3.0 m68k
Debian Linux 3.0 ia-64
Debian Linux 3.0 ia-32
Debian Linux 3.0 hppa
Debian Linux 3.0 arm
Debian Linux 3.0 alpha
Debian Linux 3.0

- 漏洞讨论

Debian Linux is reportedly affected by a local file information disclosure vulnerability. This issue is due to the application setting a PAM radius configuration file as world-readable during the installation of the affected package.

This issue is specific to Debian Linux.

- 漏洞利用

No exploit is required.

- 解决方案

Debian Linux has released advisory DSA-659-1 addressing this and other issues. Please see the referenced advisory for more information.


Debian Linux 3.0 hppa

Debian Linux 3.0 ppc

Debian Linux 3.0 s/390

Debian Linux 3.0 arm

Debian Linux 3.0 alpha

Debian Linux 3.0 mips

Debian Linux 3.0 mipsel

Debian Linux 3.0 ia-32

Debian Linux 3.0 sparc

Debian Linux 3.0 m68k

Debian Linux 3.0 ia-64

- 相关参考

     

     

    关于SCAP中文社区

    SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

    版权声明

    CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站