发布时间 :2005-05-02 00:00:00
修订时间 :2008-09-05 16:48:17

[原文]Race condition in libsafe 2.0.16 and earlier, when running in multi-threaded applications, allows attackers to bypass libsafe protection and exploit other vulnerabilities before the _libsafe_die function call is completed.



- CVSS (基础分值)

CVSS分值: 5.1 [中等(MEDIUM)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: PARTIAL [可能会导致系统文件被修改]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: HIGH [漏洞利用存在特定的访问条件]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:avaya:libsafe:2.0.14Avaya Libsafe 2.0.14
cpe:/a:avaya:libsafe:2.0.8Avaya Libsafe 2.0.8
cpe:/a:avaya:libsafe:2.0.6Avaya Libsafe 2.0.6
cpe:/a:avaya:libsafe:2.0.10Avaya Libsafe 2.0.10
cpe:/a:avaya:libsafe:2.0.4Avaya Libsafe 2.0.4
cpe:/a:avaya:libsafe:2.0.13Avaya Libsafe 2.0.13
cpe:/a:avaya:libsafe:2.0.7Avaya Libsafe 2.0.7
cpe:/a:avaya:libsafe:2.0.2Avaya Libsafe 2.0.2
cpe:/a:avaya:libsafe:2.0.3Avaya Libsafe 2.0.3
cpe:/a:avaya:libsafe:2.0.1Avaya Libsafe 2.0.1
cpe:/a:avaya:libsafe:2.0.12Avaya Libsafe 2.0.12
cpe:/a:avaya:libsafe:2.0.16Avaya Libsafe 2.0.16
cpe:/a:avaya:libsafe:2.0.15Avaya Libsafe 2.0.15
cpe:/a:avaya:libsafe:2.0.5Avaya Libsafe 2.0.5
cpe:/a:avaya:libsafe:2.0.9Avaya Libsafe 2.0.9
cpe:/a:avaya:libsafe:2.0.11Avaya Libsafe 2.0.11

- OVAL (用于检测的技术细节)


- 官方数据库链接
(官方数据源) MITRE
(官方数据源) NVD
(官方数据源) CNNVD

- 其它链接及资源
(UNKNOWN)  BID  13190
(VENDOR_ADVISORY)  BUGTRAQ  20050415 [] Libsafe - Safety Check Bypass Vulnerability

- 漏洞信息

中危 竞争条件
2005-05-02 00:00:00 2005-10-20 00:00:00

- 公告与补丁

        目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:" target="_blank

- 漏洞信息

libsafe Race Condition Protection Check Bypass
Local Access Required Race Condition
Loss of Integrity
Exploit Public

- 漏洞描述

Libsafe contains a flaw that may allow a malicious user to bypass libsafe security mechanisms in a multi-threaded application linked against the vulnerable library. The issue is due to a race condition when processing simultaneous attacks in separated threads, resulting in a loss of integrity.

- 时间线

2005-04-15 Unknow
2005-04-15 Unknow

- 解决方案

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

- 相关参考

- 漏洞作者

- 漏洞信息

Libsafe Multi-threaded Process Race Condition Security Bypass Weakness
Race Condition Error 13190
Yes Yes
2005-04-15 12:00:00 2009-07-12 12:56:00
Discovery is credited to

- 受影响的程序版本

Avaya Labs Libsafe 2.0 -16

- 漏洞讨论

Libsafe will normally kill an application when certain types of memory corruption are detected, preventing exploitation of some buffer overflow and format string vulnerabilities. A weakness has been reported that may allow Libsafe security failsafe mechanisms to be bypassed.

This vulnerability is due to a race condition that may be exposed when Libsafe is used with multi-threaded applications. The result is that Libsafe security features may be bypassed and an attack that would ordinarily be prevented may succeed. It should be noted that this is an implementation error in Libsafe that does not present a security risk unless there is a memory corruption vulnerability in a multi-threaded application on an affected computer.

This issue was reported in Libsafe 2.0-16. Other versions may also be affected.

- 漏洞利用

A proof-of-concept was provided to demonstrate the issue. The proof-of-concept may need to be executed multiple times to successfully exploit the issue.

- 解决方案

Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: <>.

- 相关参考