Secunia Logo
 Vulnerability IntelligenceVulnerability ScanningBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Debian geneweb Arbitrary File Manipulation Vulnerability
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Debian geneweb Arbitrary File Manipulation Vulnerability
Secunia Advisory: SA15022
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2005-04-20
Popularity: 6,137 views

Critical:
Less critical
Impact: Manipulation of data
Where: Local system
Solution Status: Vendor Patch

OS:Debian GNU/Linux 3.0
Debian GNU/Linux unstable alias sid
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2005-0391
Description:
Debian has issued an update for geneweb. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges.

The vulnerability is caused due to the maintainer scripts automatically converting files believed to be old ".gwb" database files without checking the file permissions and content. This can be exploited via symlink attacks to manipulate arbitrary files with the privileges of the user running the maintainer scripts.

Solution:
Apply updated packages.

-- Debian GNU/Linux 3.0 alias woody --

Source archives:

http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06-2woody1.dsc
Size/MD5 checksum: 622 42f4904be438272ef8cdc58c209bf69e
http://security.debian.org/pool/updat.../geneweb/geneweb_4.06-2woody1.diff.gz
Size/MD5 checksum: 23312 8a6772692840aaa3a8190f3c620a93c7
http://security.debian.org/pool/updates/main/g/geneweb/geneweb_4.06.orig.tar.gz
Size/MD5 checksum: 832896 a64a4373cb82d6a3044718c7345e45f7

Alpha architecture:

http://security.debian.org/pool/updat...eneweb/geneweb_4.06-2woody1_alpha.deb
Size/MD5 checksum: 2337090 858feee271e9273832c88d48ba328a12
http://security.debian.org/pool/updat...g/geneweb/gwtp_4.06-2woody1_alpha.deb
Size/MD5 checksum: 208060 f7307a991ec6bc392921d90abdc81ca2

ARM architecture:

http://security.debian.org/pool/updat.../geneweb/geneweb_4.06-2woody1_arm.deb
Size/MD5 checksum: 1944856 82b8aebab5bb58d37d15b999a4335f2a
http://security.debian.org/pool/updates/main/g/geneweb/gwtp_4.06-2woody1_arm.deb
Size/MD5 checksum: 169726 7839aa9156ee97f9d1f3c4f86dd550c3

Intel IA-32 architecture:

http://security.debian.org/pool/updat...geneweb/geneweb_4.06-2woody1_i386.deb
Size/MD5 checksum: 1684856 2a1bc1f0ec1fc6c3f7ef7c52fd1e94d8
http://security.debian.org/pool/updat.../g/geneweb/gwtp_4.06-2woody1_i386.deb
Size/MD5 checksum: 144654 6894d141467665242c11498ad8d19c7e

Intel IA-64 architecture:

http://security.debian.org/pool/updat...geneweb/geneweb_4.06-2woody1_ia64.deb
Size/MD5 checksum: 985874 1ab07405b51d714f67947bbdb2b75556
http://security.debian.org/pool/updat.../g/geneweb/gwtp_4.06-2woody1_ia64.deb
Size/MD5 checksum: 108438 4885192511533339a3f4bbac1f46e3af

HP Precision architecture:

http://security.debian.org/pool/updat...geneweb/geneweb_4.06-2woody1_hppa.deb
Size/MD5 checksum: 865514 2e9ac4cb55344f560c09305d8e5ff69a
http://security.debian.org/pool/updat.../g/geneweb/gwtp_4.06-2woody1_hppa.deb
Size/MD5 checksum: 88544 f9bb191412501d5bb0af4f1e3ad3da8d

Motorola 680x0 architecture:

http://security.debian.org/pool/updat...geneweb/geneweb_4.06-2woody1_m68k.deb
Size/MD5 checksum: 769174 160c16c3ec87483ea98bf2d27d21791d
http://security.debian.org/pool/updat.../g/geneweb/gwtp_4.06-2woody1_m68k.deb
Size/MD5 checksum: 72536 91fb0ee658037ed95eacf536d4a85066

Big endian MIPS architecture:

http://security.debian.org/pool/updat...geneweb/geneweb_4.06-2woody1_mips.deb
Size/MD5 checksum: 830996 744a10d4b0b6274130243f20b5fd61b8
http://security.debian.org/pool/updat.../g/geneweb/gwtp_4.06-2woody1_mips.deb
Size/MD5 checksum: 82986 e0ad1d6ec21c6e3d3c05f3d415dc7464

Little endian MIPS architecture:

http://security.debian.org/pool/updat...neweb/geneweb_4.06-2woody1_mipsel.deb
Size/MD5 checksum: 828712 f662f4bfd37628765ff6ed5f84db1ced
http://security.debian.org/pool/updat.../geneweb/gwtp_4.06-2woody1_mipsel.deb
Size/MD5 checksum: 82488 f59385de1518114ca79d4fafdd671c70

PowerPC architecture:

http://security.debian.org/pool/updat...eweb/geneweb_4.06-2woody1_powerpc.deb
Size/MD5 checksum: 1974276 6f7b75c7a7110573a60e23ee148ad08e
http://security.debian.org/pool/updat...geneweb/gwtp_4.06-2woody1_powerpc.deb
Size/MD5 checksum: 172650 722401a02a51b2e0e56cb3192fd0112c

IBM S/390 architecture:

http://security.debian.org/pool/updat...geneweb/geneweb_4.06-2woody1_s390.deb
Size/MD5 checksum: 806318 9050118b04fd2ac2191a42626a0f475e
http://security.debian.org/pool/updat.../g/geneweb/gwtp_4.06-2woody1_s390.deb
Size/MD5 checksum: 78592 ef1d41ec105bff3fb06d7666ba1a5088

Sun Sparc architecture:

http://security.debian.org/pool/updat...eneweb/geneweb_4.06-2woody1_sparc.deb
Size/MD5 checksum: 2014300 a419b10c08cf4612a5acba067f4adc3f
http://security.debian.org/pool/updat...g/geneweb/gwtp_4.06-2woody1_sparc.deb
Size/MD5 checksum: 176650 8e4c69e79adc7df3de7464981c8e8d31


-- Debian GNU/Linux unstable alias sid --

Fixed in version 4.10-7.

Provided and/or discovered by:
Tim Dijkstra

Original Advisory:
http://www.debian.org/security/2005/dsa-712

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

Today
New advisories: 10
New vulnerabilities: 32
Updated advisories: 14

Less // 92 views
SemanticScuttle Cross-Site Scripting Vulnerabilities
Moderately // 105 views
Easyedit CMS Multiple SQL Injection Vulnerabilities
Highly // 102 views
Fedora update for thunderbird
Less // 121 views
IBM Workplace Web Content Management Cross-Site Scripting Vulnerabilities
Highly // 260 views
BitDefender Antivirus PDF Processing Memory Corruption Vulnerability
Moderately // 194 views
xt:Commerce SQL Injection Vulnerability
Less // 167 views
Softbiz Classifieds Script "msg" Cross-Site Scripting Vulnerability
Not // 246 views
Checkpoint VPN-1 Information Disclosure Vulnerability
Moderately // 222 views
Avaya CMS Solaris "sadmind" Buffer Overflow Vulnerability
Moderately // 251 views
EMC Control Center SAN Manager Multiple Vulnerabilities

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. BitDefender Antivirus PDF Processing Memory Corruption Vulnerability // 113 views
2. IBM Workplace Web Content Management Cross-Site Scripting Vulnerabilities // 113 views
3. Checkpoint VPN-1 Information Disclosure Vulnerability // 95 views
4. Easyedit CMS Multiple SQL Injection Vulnerabilities // 95 views
5. Fedora update for thunderbird // 94 views
6. SemanticScuttle Cross-Site Scripting Vulnerabilities // 83 views
7. EMC Control Center SAN Manager Multiple Vulnerabilities // 81 views
8. xt:Commerce SQL Injection Vulnerability // 72 views
9. Avaya CMS Solaris "sadmind" Buffer Overflow Vulnerability // 64 views
10. Softbiz Classifieds Script "msg" Cross-Site Scripting Vulnerability // 60 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008