Secunia Security Advisory - Nikolas Sotiriu has reported a security issue in McAfee LinuxShield, which can be exploited by malicious, local users to gain escalated privileges.
e50ed7fe1f5df8ca48a5d88b5154a1e1dceb20d46dd06e4028c96c0b5f247b5d
----------------------------------------------------------------------
Use WSUS to deploy 3rd party patches
Public BETA
http://secunia.com/vulnerability_scanning/corporate/wsus_3rd_third_party_patching/
----------------------------------------------------------------------
TITLE:
McAfee LinuxShield "nailsd" Authentication Security Issue
SECUNIA ADVISORY ID:
SA38782
VERIFY ADVISORY:
http://secunia.com/advisories/38782/
DESCRIPTION:
Nikolas Sotiriu has reported a security issue in McAfee LinuxShield,
which can be exploited by malicious, local users to gain escalated
privileges.
The security issue is caused due to the "nailsd" daemon allowing
unprivileged, local users to log in and access administrative
functionality. This can be exploited e.g. to change the configuration
and to execute arbitrary code with root privileges.
The security issue is reported in version 1.5.1. Other versions may
also be affected.
SOLUTION:
Update to version 1.5.1 and install hotfix HF550192.
PROVIDED AND/OR DISCOVERED BY:
Nikolas Sotiriu (lofi)
ORIGINAL ADVISORY:
McAfee:
https://kc.mcafee.com/corporate/index?page=content&id=SB10007
Nikolas Sotiriu:
http://sotiriu.de/adv/NSOADV-2010-004.txt
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------