Vulnerability IntelligenceVulnerability ScanningBlogCorporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Ubuntu update for unshar
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Ubuntu update for unshar
Secunia Advisory: SA14824
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2005-04-05
Popularity: 5,052 views

Critical:
Not critical
Impact: Privilege escalation
Where: Local system
Solution Status: Vendor Patch

OS:Ubuntu Linux 4.10
Subscribe: Instant alerts on relevant vulnerabilities


Description:
Ubuntu has issued an update for unshar. This fixes a vulnerability, which potentially can be exploited by malicious, local users to conduct certain actions on a vulnerable system with escalated privileges.

For more information:
SA14551

Solution:
Apply updated packages.

-- Ubuntu 4.10 (Warty Warthog) --

Source archives:

http://security.ubuntu.com/ubuntu/poo...s/sharutils_4.2.1-10ubuntu0.2.diff.gz
Size/MD5: 8181 7135804300d9a381cfebc2133e7239c2
http://security.ubuntu.com/ubuntu/poo...utils/sharutils_4.2.1-10ubuntu0.2.dsc
Size/MD5: 634 1a16efd9010325d369909b608fb59597
http://security.ubuntu.com/ubuntu/poo...sharutils/sharutils_4.2.1.orig.tar.gz
Size/MD5: 306022 b8ba1d409f07edcb335ff72a27bd9828

Architecture independent packages:

http://security.ubuntu.com/ubuntu/poo...arutils-doc_4.2.1-10ubuntu0.2_all.deb
Size/MD5: 28000 56cd083b2fbc3e689cb157a59c760f52

amd64 architecture (Athlon64, Opteron, EM64T Xeon)

http://security.ubuntu.com/ubuntu/poo...sharutils_4.2.1-10ubuntu0.2_amd64.deb
Size/MD5: 113908 801afa19d2f272d22f7d13f5efb0a51a

i386 architecture (x86 compatible Intel/AMD)

http://security.ubuntu.com/ubuntu/poo.../sharutils_4.2.1-10ubuntu0.2_i386.deb
Size/MD5: 110766 2d3e74efceff274a2bb4a17b3c4702b1

powerpc architecture (Apple Macintosh G3/G4/G5)

http://security.ubuntu.com/ubuntu/poo...arutils_4.2.1-10ubuntu0.2_powerpc.deb
Size/MD5: 112656 1ce41914dde0c8d548f6bcc2d3a8fbd8

Original Advisory:
http://www.ubuntulinux.org/support/documentation/usn/usn-104-1

Other References:
SA14551:
http://secunia.com/advisories/14551/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

5th Sep, 2008
New advisories: 14
New vulnerabilities: 18
Updated advisories: 22

Less // 253 views
Netgear WN802T Wireless Access Point Two Vulnerabilities
Less // 199 views
Fedora update for xastir
Less // 256 views
XASTIR Insecure Temporary Files
Less // 207 views
Fedora update for samba
Less // 214 views
Fedora update for bitlbee
Less // 591 views
3Com Wireless 8760 Access Point HTTP Request Processing Denial of Service
Moderately // 487 views
CS-Cart "cs_cookies" SQL Injection Vulnerability
Less // 563 views
Drupal Content Construction Kit Script Insertion Vulnerabilities
Less // 569 views
HP OpenView Select Identity Connectors Information Disclosure
Moderately // 453 views
rPath update for libtiff

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. phpJobScheduler "installed_config_file" File Inclusion Vulnerabilities // 57 views
2. Subdreamer Light Global Variables SQL Injection Vulnerability // 35 views
3. PluggedOut Blog "index.php" SQL Injection Vulnerabilities // 31 views
4. Microsoft Word Malformed Object Pointer Vulnerability // 18 views
5. phpBB Cross Site Scripting and Unspecified Vulnerabilities // 17 views
6. Avaya Message Storage Server Input Validation Vulnerabilities // 14 views
7. Drupal Content Construction Kit Script Insertion Vulnerabilities // 14 views
8. CS-Cart "cs_cookies" SQL Injection Vulnerability // 13 views
9. Recipes Website "recipeid" and "categoryid" SQL Injection // 12 views
10. phpBB BBcode Script Insertion Vulnerability // 12 views



Contact | Terms & Conditions | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008