Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1940

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2008-1940
Last Modified 07 Mar 2011 10:08:17
Published 25 Apr 2008 02:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-1940

Summary

The RBAC functionality in grsecurity before 2.1.11-2.6.24.5 and 2.1.11-2.4.36.2 does not enforce user_transition_deny and user_transition_allow rules for the (1) sys_setfsuid and (2) sys_setfsgid calls, which allows local users to bypass restrictions for those calls.

Vulnerable Systems

Application

  • Grsecurity Kernel Patch 2.4.33

  • Grsecurity Kernel Patch 2.4.33.2

  • Grsecurity Kernel Patch 2.4.33.3

  • Grsecurity Kernel Patch 2.4.33.4

  • Grsecurity Kernel Patch 2.4.34

  • Grsecurity Kernel Patch 2.6.18

  • Grsecurity Kernel Patch 2.6.24.4


References

BID - 28889

SECUNIA - 29899

VUPEN - ADV-2008-1323

CONFIRM - http://www.grsecurity.org/news.php#grsec21113

XF - grsecurity-rbac-security-bypass(41952)

SECTRACK - 1019919


Last Updated: 27 May 2016 10:47:42