Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2002-137: util

Vulnerability Assessment Details

RHSA-2002-137: util
Vulnerability Assessment Summary
Check for the version of the util packages

Detailed Explanation for this Vulnerability Assessment


The util-linux package shipped with Red Hat Linux Advanced Server contains
a locally exploitable vulnerability.

The util-linux package contains a large variety of low-level system
utilities that are necessary for a Linux system to function. The 'chfn'
utility included in this package permits users to modify personal
information stored in the system-wide password file, /etc/passwd. In order
to modify this file, this application is installed setuid root.

Under certain conditions, a carefully crafted attack sequence can be
performed to exploit a complex file locking and modification race present
in this utility permiting changes to be made to /etc/passwd.

In order to successfully exploit the vulnerability and perform privilege
escalation there is a need for a minimal administrator interaction.
Additionally, the password file must be over 4 kilobytes, and the local
attackers entry must not be in the last 4 kilobytes of the password file.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2002-0638 to this issue.

An interim workaround is to remove setuid flags from /usr/bin/chfn and
/usr/bin/chsh. All users of Red Hat Linux should update to the errata
util-linux packages which contain a patch to correct this vulnerability.

Many thanks to Michal Zalewski of Bindview for alerting us to this issue.




Solution : http://rhn.redhat.com/errata/RHSA-2002-137.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security
Cables, Connectors


Lenovo IdeaPad 5i Slim 5 16IRL8 16

Lenovo IdeaPad 5i Slim 5 16IRL8 16" (512GB SSD, Intel Core i5-1335U, 1.30GHz,...

$422.10


LENOVO P520 Workstation W-2135 up to 128GB RAM 4TB SSD Win11P WiFi DVD/RW Gaming picture

LENOVO P520 Workstation W-2135 up to 128GB RAM 4TB SSD Win11P WiFi DVD/RW Gaming

$439.88


Lenovo ThinkPad L390 Yoga i5-8265U 1.6GHz 128GB SSD 8GB RAM USED SCREEN ISSUE picture

Lenovo ThinkPad L390 Yoga i5-8265U 1.6GHz 128GB SSD 8GB RAM USED SCREEN ISSUE

$139.99


Notebook Lenovo Slim Pro 9 Laptop, 16

Notebook Lenovo Slim Pro 9 Laptop, 16" Glass, i9-13905H, GB, 1TB SSD

$1022.99


Lenovo IP 5 16IAU7 16

Lenovo IP 5 16IAU7 16" 2.5K Chromebook i3-1215U 8GB Ram 128GB eMMC Chrome OS

$219.99


Lenovo ThinkPad Yoga 11e 11.6

Lenovo ThinkPad Yoga 11e 11.6" 2in1 Touch Intel Core i3 4GB RAM 128GB SSD Win10

$59.00


Lenovo ThinkPad X1 Nano 13

Lenovo ThinkPad X1 Nano 13" Touchscreen 2K i7-1180G7 16GB/256GB Win 10 Pro

$555.00


Lenovo Ideapad 1i 15.6

Lenovo Ideapad 1i 15.6" FHD Notebook Intel Core i5-1235U 8GB RAM 256GB SSD

$349.99


Lenovo K14 AMD Laptop, 14

Lenovo K14 AMD Laptop, 14" FHD IPS LED , Ryzen 5 5600U, GB, 256GB SSD

$569.00


Lenovo ThinkPad 14

Lenovo ThinkPad 14" Laptop Computer Core i7 16GB RAM 256GB SSD Windows 10 Pro

$229.99


Discussions

No Discussions have been posted on this vulnerability.