SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   Performance Co-Pilot (PCP) Vendors:   SGI (Silicon Graphics)
(Vendor Releases a Fix) Re: SGI's Performance Co-Pilot (PCP) Suite Lets Local Users Obtain Root Level Privileges on the Server
SecurityTracker Alert ID:  1001809
SecurityTracker URL:  http://securitytracker.com/id/1001809
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Jun 22 2001
Impact:   Execution of arbitrary code via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   A vulnerability has been reported in SGI's Performance Co-Pilot (PCP) system management framework that allows local users to get root level privileges.

The vulnerability is reportedly a symlink handling problem in the pmpost utility, designed to manage text messages. The pmpost utility will reportedly follow symlinks. If the linked file is configured with setuid root privileges, this will allow a local user to obtain root level privileges.

A demonstration exploit script is provided in the Source Message.

Impact:   A local user can obtain root level privileges on the host.
Solution:   The vendor has announced that Performance Co-Pilot (version 2.2.1-3) is now available. This version reportedly contains fixes for the recent security issues uncovered against the earlier 2.2.0-18 release. The vendor recommends upgrading. The new source and binary RPMs are available at: http://oss.sgi.com/projects/pcp/download

For PCP on IRIX, a patch will be available shortly for SGI customers.

Vendor URL:  oss.sgi.com/projects/pcp/ (Links to External Site)
Cause:   Access control error
Underlying OS:  Linux (Any), UNIX (Any)
Underlying OS Comments:  tested on SuSE 7.1

Message History:   This archive entry is a follow-up to the message listed below.
Jun 19 2001 SGI's Performance Co-Pilot (PCP) Suite Lets Local Users Obtain Root Level Privileges on the Server



 Source Message Contents

Subject:  [ANNOUNCE] SGI Performance Co-Pilot 2.2.1-3 now available



Performance Co-Pilot (version 2.2.1-3) is now available. This version
contains fixes for the recent security issues uncovered against the
earlier 2.2.0-18 release. Please upgrade; the new source and binary
RPMs are available from http://oss.sgi.com/projects/pcp/download

For PCP on IRIX, a patch will be available shortly for SGI customers.

If anyone finds any further PCP security issues, please mail me
(markgw@sgi.com) directly before wider distribution.

thanks

-- Mark Goodwin
SGI Engineering



 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC