Vulnerability Detail

UnixWare / Open UNIX ps command line buffer overflow vulnerability

Date Discovered:
10 Jan 2003

Date Published:
10 Jan 2003

Last Updated:
18 Oct 2004

Threat Assessment

Overall Risk: Low

Popularity : Medium

Impact: Low

Simplicity: Low

Characteristics

Vulnerability ID: 6968
Discovered By: anonymous

Exploitable Locally: Yes
Exploitable Remotely: No

Impact: Local attackers can gain escalated privileges.

Root Cause: Software Vulnerability

Description

Recommendations

Affected Technologies

References

Description

UnixWare / Open UNIX ps command is vulnerable to a buffer overflow condition that may allow local attackers to gain escalated privileges. The flaw is due to improper bounds checking performed on command line arguments supplied by the user to the ps command. Because the ps command uses privileged calls, local attackers can exploit this flaw to overflow the buffer and execute arbitrary code with escalated privileges.

Recommendations

Apply the patches provided by the vendor:

UnixWare 7.1.1:
ftp://ftp.sco.com/pub/updates/OpenUNIX/CSSA-2003-SCO.1.1/erg712109.pkg.Z

Open UNIX 8.0.0:
ftp://ftp.sco.com/pub/updates/OpenUNIX/CSSA-2003-SCO.1.1/erg712109.pkg.Z

UnixWare 7.1.3:
ftp://ftp.sco.com/pub/updates/OpenUNIX/CSSA-2003-SCO.1.1/erg712109.pkg.Z

Vendor advisory:
CSSA-2003-SCO.1
CSSA-2003-SCO.1.1

Affected Technologies

Caldera: Caldera Open UNIX 8
Santa Cruz Operation, Inc.: Unixware 7.1.1
Santa Cruz Operation, Inc.: Unixware 7.1.3

References

Mitre CVE: CVE-2002-2270

CA Global Security Advisor

Current threat condition: Low

Documents and Tools

Find Threats

Viruses Spyware
Vulnerabilities All

Page Tools