SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   OS (UNIX)  >   newtask Vendors:   Sun
Solaris newtask(1) Command Flaw Lets Local Users Grab Root Access
SecurityTracker Alert ID:  1006411
SecurityTracker URL:  http://securitytracker.com/id/1006411
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Mar 29 2003
Impact:   Root access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   A vulnerability was reported in the newtask(1) command on Sun Solaris 9. A local user could obtain root privileges on the system.

Sun reports that the utility is configured with set user id (setuid) root privileges. The nature of the vulnerability was not disclosed.

Sun reports that Solaris 2.6 and 7 do not have the newtask(1) command and that Solaris 8 is not affected.

Impact:   A local user can obtain root privileges.
Solution:   Sun has released a fix:

SPARC Platform

Solaris 9 with patch 114713-01 or later

x86 Platform

Solaris 9 with patch 114714-01 or later

As a workaround, Sun indicates that you can remove the set user id (setuid) bit from the newtask binaries:

# chmod u-s /usr/bin/sparcv7/newtask
# chmod u-s /usr/bin/sparcv9/newtask
# chmod u-s /usr/sbin/i86/whodo

Vendor URL:  sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F52111 (Links to External Site)
Cause:   Not specified
Underlying OS Comments:  Solaris 9

Message History:   None.


 Source Message Contents

Subject:  Sun Alert 52111; newtask(1)


http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F52111

Sun issued Alert 52111 warning that the newtask(1) command on Solaris 9 may let a local user gain
root access.

Sun reports that Solaris 2.6 and 7 do not have the newtask(1) command and that Solaris 8 is not
affected.

As a workaround, Sun indicates that you can remove the set user id (setuid) bit from the newtask
binaries:

	# chmod u-s /usr/bin/sparcv7/newtask
	# chmod u-s /usr/bin/sparcv9/newtask 
	# chmod u-s /usr/sbin/i86/whodo                                    

Sun has released a fix:

SPARC Platform 

Solaris 9 with patch 114713-01 or later 

x86 Platform 

Solaris 9 with patch 114714-01 or later 

-----

Sun Alert ID: 52111 
Synopsis: On Solaris 9 a Security Issue with the newtask(1) Command May Lead to Unauthorized Root
Access 
Category: Security 
Product: Solaris 
BugIDs: 4798119 
Avoidance: Patch 
State: Resolved 
Date Released: 28-Mar-2003 
Date Closed: 28-Mar-2003 
Date Modified:


 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC