CVE-2005-0391
CVSS5.0
发布时间 :2005-05-02 00:00:00
修订时间 :2008-09-05 16:46:09
NMCOPS    

[原文]geneweb 4.10 and earlier does not properly check file permissions and content during conversion, which allows attackers to modify arbitrary files.


[CNNVD]GeneWeb 未明漏洞(CNNVD-200505-378)

        geneweb 4.10以及较早的版本,未能在转换期间正确检查文件的权限和内容,从而允许攻击者修改任意文件。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: NONE [对系统的机密性无影响]
完整性影响: PARTIAL [可能会导致系统文件被修改]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0391
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0391
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200505-378
(官方数据源) CNNVD

- 其它链接及资源

http://www.debian.org/security/2005/dsa-712
(VENDOR_ADVISORY)  DEBIAN  DSA-712
http://xforce.iss.net/xforce/xfdb/20176
(UNKNOWN)  XF  geneweb-insecure-file-permission(20176)

- 漏洞信息

GeneWeb 未明漏洞
中危 资料不足
2005-05-02 00:00:00 2005-10-20 00:00:00
本地  
        geneweb 4.10以及较早的版本,未能在转换期间正确检查文件的权限和内容,从而允许攻击者修改任意文件。

- 公告与补丁

        暂无数据

- 漏洞信息 (F37784)

dsa-712.txt (PacketStormID:F37784)
2005-06-01 00:00:00
 
advisory,web,arbitrary
linux,debian
CVE-2005-0391
[点击下载]

Debian Security Advisory DSA 712-1 - Tim Dijkstra discovered a problem during the upgrade of geneweb, a genealogy software with web interface. The maintainer scripts automatically converted files without checking their permissions and content, which could lead to the modification of arbitrary files.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 712-1                     security@debian.org
http://www.debian.org/security/                             Martin Schulze
April 19th, 2005                        http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : geneweb
Vulnerability  : insecure file operations
Problem-Type   : local
Debian-specific: yes
CVE ID         : CAN-2005-0391
Debian Bug     : 304405

Tim Dijkstra discovered a problem during the upgrade of geneweb, a
genealogy software with web interface.  The maintainer scripts
automatically converted files without checking their permissions and
content, which could lead to the modification of arbitrary files.

For the stable distribution (woody) this problem has been fixed in
version 4.06-2woody1.

For the unstable distribution (sid) this problem has been fixed in
version 4.10-7.

We recommend that you upgrade your geneweb package.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.0 alias woody
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1.dsc
      Size/MD5 checksum:      622 42f4904be438272ef8cdc58c209bf69e
    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1.diff.gz
      Size/MD5 checksum:    23312 8a6772692840aaa3a8190f3c620a93c7
    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06.orig.tar.gz
      Size/MD5 checksum:   832896 a64a4373cb82d6a3044718c7345e45f7

  Alpha architecture:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1_alpha.deb
      Size/MD5 checksum:  2337090 858feee271e9273832c88d48ba328a12
    http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_alpha.deb
      Size/MD5 checksum:   208060 f7307a991ec6bc392921d90abdc81ca2

  ARM architecture:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1_arm.deb
      Size/MD5 checksum:  1944856 82b8aebab5bb58d37d15b999a4335f2a
    http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_arm.deb
      Size/MD5 checksum:   169726 7839aa9156ee97f9d1f3c4f86dd550c3

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1_i386.deb
      Size/MD5 checksum:  1684856 2a1bc1f0ec1fc6c3f7ef7c52fd1e94d8
    http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_i386.deb
      Size/MD5 checksum:   144654 6894d141467665242c11498ad8d19c7e

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1_ia64.deb
      Size/MD5 checksum:   985874 1ab07405b51d714f67947bbdb2b75556
    http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_ia64.deb
      Size/MD5 checksum:   108438 4885192511533339a3f4bbac1f46e3af

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1_hppa.deb
      Size/MD5 checksum:   865514 2e9ac4cb55344f560c09305d8e5ff69a
    http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_hppa.deb
      Size/MD5 checksum:    88544 f9bb191412501d5bb0af4f1e3ad3da8d

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1_m68k.deb
      Size/MD5 checksum:   769174 160c16c3ec87483ea98bf2d27d21791d
    http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_m68k.deb
      Size/MD5 checksum:    72536 91fb0ee658037ed95eacf536d4a85066

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1_mips.deb
      Size/MD5 checksum:   830996 744a10d4b0b6274130243f20b5fd61b8
    http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_mips.deb
      Size/MD5 checksum:    82986 e0ad1d6ec21c6e3d3c05f3d415dc7464

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1_mipsel.deb
      Size/MD5 checksum:   828712 f662f4bfd37628765ff6ed5f84db1ced
    http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_mipsel.deb
      Size/MD5 checksum:    82488 f59385de1518114ca79d4fafdd671c70

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1_powerpc.deb
      Size/MD5 checksum:  1974276 6f7b75c7a7110573a60e23ee148ad08e
    http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_powerpc.deb
      Size/MD5 checksum:   172650 722401a02a51b2e0e56cb3192fd0112c

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1_s390.deb
      Size/MD5 checksum:   806318 9050118b04fd2ac2191a42626a0f475e
    http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_s390.deb
      Size/MD5 checksum:    78592 ef1d41ec105bff3fb06d7666ba1a5088

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1_sparc.deb
      Size/MD5 checksum:  2014300 a419b10c08cf4612a5acba067f4adc3f
    http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_sparc.deb
      Size/MD5 checksum:   176650 8e4c69e79adc7df3de7464981c8e8d31


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)

iD8DBQFCZRw3W5ql+IAeqTIRAk+MAJ9ZX6RUzDhKm4PFGoNL6UerY4z9BgCgs9A8
ITrUMPRM0yEwKTIDU6swHeo=
=zmSz
-----END PGP SIGNATURE-----

    

- 漏洞信息

15709
geneweb Maintainer Scripts Arbitrary File Manipulation
Local Access Required Race Condition
Loss of Integrity
Exploit Unknown

- 漏洞描述

Geneweb contains a flaw that may allow a malicious local user to manipulate arbitrary files on the system. The issue is due to the maintainer scripts converting .gwb database files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files, resulting in a loss of integrity.

- 时间线

2005-04-19 Unknow
Unknow Unknow

- 解决方案

Upgrade to version 4.06-2woody1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

- 相关参考

- 漏洞作者

- 漏洞信息

GeneWeb Maintainer Scripts Unspecified Insecure File Operations Vulnerability
Unknown 13262
No Yes
2005-04-19 12:00:00 2009-07-12 02:06:00
Discovery of this issue is credited to Tim Dijkstra.

- 受影响的程序版本

GeneWeb GeneWeb 4.0 9
GeneWeb GeneWeb 4.0 8
GeneWeb GeneWeb 4.0 7
GeneWeb GeneWeb 4.0 6
GeneWeb GeneWeb 4.0 5

- 漏洞讨论

GeneWeb ships with maintainer scripts that are employed when upgrading or installing the software.

The GeneWeb maintainer scripts are reported prone to an unspecified insecure file operation.

This issue may lead to modification of arbitrary files with the context of the user that is running the maintainer scripts.

- 漏洞利用

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com &lt;mailto:vuldb@securityfocus.com&gt;.

- 解决方案

Debian has released an advisory (DSA 712-1) and updates to address this issue. Please see the referenced advisory for further information.

Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.


GeneWeb GeneWeb 4.0 6

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站