SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   EMC Avamar Vendors:   EMC
EMC Avamar Unsafe Directory Permissions Lets Local Users Gain Elevated Privileges
SecurityTracker Alert ID:  1028021
SecurityTracker URL:  http://securitytracker.com/id/1028021
CVE Reference:   CVE-2012-2291   (Links to External Site)
Date:  Jan 22 2013
Impact:   Root access via local system, User access via local system
Vendor Confirmed:  Yes  
Version(s): HP-UX Client 4.x, 5.x, 6.x; Mac OS Client 4.x, 5.x, 6.x; Plugin for Oracle 4.x, 5.x, 6.x
Description:   A vulnerability was reported in EMC Avamar. A local user can obtain elevated privileges on the target system.

The system creates certain directories and files with world writable permissions. A local user can conduct a symlink attack to cause arbitrary code to be executed on the target system with elevated privileges when a system-level backup is performed.

Impact:   A local user can obtain elevated privileges on the target system.
Solution:   No solution was available at the time of this entry.

The vendor has provided the following workaround instructions [quoted]:

"For HP-UX clients:
The permissions of the /opt/AVMRclnt/var directory should be set to 0755.
chmod 0755 /opt/AVMRclnt/var

For Mac OS clients:
The permissions of the /var/avamar directory should be set to 0755.
chmod 0755 /var/avamar

For Oracle clients:
The following procedure only applies to clients where the directory permissions of the Avamar var directory (/usr/local/avamar/var or /opt/AVMRclnt/var) have been manually changed after installation of the Avamar plugin for Oracle:

On Linux and Unix Oracle clients other than Solaris and HP-UX:

chmod 0775 /usr/local/avamar/var
chgrp oracle /usr/local/avamar/var

On Solaris and HP-UX Oracle clients:

chmod 0775 /opt/AVMRclnt/var
chgrp oracle /opt/AVMRclnt/var

Other Avamar clients:

Verify that the permissions of the Avamar var directory (/usr/local/avamar/var or /opt/AVMRclnt/var) on Linux and Unix clients are not modified as a result of a support or locally-performed procedure. The permissions should be set to 0755.

If you have any questions or concerns about running the above commands please contact EMC Technical Support at http://www.emc.com/contact."

Vendor URL:  www.emc.com/ (Links to External Site)
Cause:   Access control error, Configuration error
Underlying OS:  Linux (Any), UNIX (AIX), UNIX (FreeBSD), UNIX (HP/UX), UNIX (Open UNIX-SCO), UNIX (macOS/OS X), UNIX (Solaris - SunOS)
Underlying OS Comments:  HP-UX and Mac OS X are affected. Other Linux/UNIX based systems may also be affected.

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC