Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0884

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2004-0884
Last Modified 21 Aug 2010 12:21:25
Published 27 Jan 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0884

Summary

The (1) libsasl and (2) libsasl2 libraries in Cyrus-SASL 2.1.18 and earlier trust the SASL_PATH environment variable to find all available SASL plug-ins, which allows local users to execute arbitrary code by modifying the SASL_PATH to point to malicious programs.

Vulnerable Systems

Operating System

  • Conectiva Linux 10.0

  • Conectiva Linux 9.0

Application

  • Cyrus Sasl 1.5.24

  • Cyrus Sasl 1.5.27

  • Cyrus Sasl 1.5.28

  • Cyrus Sasl 2.1.10

  • Cyrus Sasl 2.1.11

  • Cyrus Sasl 2.1.12

  • Cyrus Sasl 2.1.13

  • Cyrus Sasl 2.1.14

  • Cyrus Sasl 2.1.15

  • Cyrus Sasl 2.1.16

  • Cyrus Sasl 2.1.17

  • Cyrus Sasl 2.1.18

  • Cyrus Sasl 2.1.18 R1

  • Cyrus Sasl 2.1.9


References

BID - 11347

DEBIAN - DSA-563

FEDORA - FLSA:2137

XF - cyrus-sasl-saslpath(17643)

TRUSTIX - 2004-0053

GENTOO - GLSA-200410-05

DEBIAN - DSA-568

CIAC - P-003

REDHAT - RHSA-2004:546

APPLE - APPLE-SA-2005-03-21

CONFIRM - http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=134657

MANDRAKE - MDKSA-2004:106

BUGTRAQ - 20050128 [OpenPKG-SA-2005.004] OpenPKG Security Advisory (sasl)


Last Updated: 27 May 2016 10:38:47