Secunia Advisory SA8557Firebird External Table Vulnerability
|
||||||||||||||||||||||||||||||||||||||||||||||||||
Description
A vulnerability identified in Firebird can reportedly in worst case be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused by an access control error. The problem is that it is possible to create an external table in an arbitrary file on the system. If the file exists, it is possible to manipulate it by appending data to it. Reportedly, successful exploitation doesn't require that the user has been authenticated. An example was included in the original advisory, which creates a user with root privileges and no password: create table test external '/etc/passwd' (id char(80)); insert into test values('r00t::0:0:root:/root:/bin/bash'); The vulnerability has been confirmed in version 1.0.2. It is currently not known whether version 1.5. Beta is vulnerable. Solution Provided and/or discovered by Deep Links Do you have additional information related to this advisory?Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com
|
||||||||||||||||||||||||||||||||||||||||||||||||||
255 views | ![]() |
| Limny Multiple Vulnerabilities | |
353 views | ![]() |
| Ubuntu update for thunderbird | |
251 views | ![]() |
| Debian update for php5 | |