Showing 1 - 5 of 5

CVE-2014-0476

Status Candidate

Overview

The slapper function in chkrootkit before 0.50 does not properly quote file paths, which allows local users to execute arbitrary code via a Trojan horse executable. NOTE: this is only a vulnerability when /tmp is not mounted with the noexec option.

Related Files

Gentoo Linux Security Advisory 201709-05: Posted Sep 17, 2017; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201709-5 - A vulnerability in chkrootkit may allow local users to gain root privileges. Versions less than 0.50 are affected.; tags | advisory, local, root; systems | linux, gentoo; advisories | CVE-2014-0476; SHA-256 | a47c2b30b67fbb7916eaad7a2b14b56e00e69a6ffb121d81b05d425a741c1fa3; Download | Favorite | View

Chkrootkit Local Privilege Escalation: Posted Nov 20, 2015; Authored by Thomas Stangner, Julien jvoisin Voisin | Site metasploit.com; Chkrootkit before 0.50 will run any executable file named /tmp/update as root, allowing a trivial privsec. WfsDelay is set to 24h, since this is how often a chkrootkit scan is scheduled by default.; tags | exploit, tool, root, integrity, rootkit; advisories | CVE-2014-0476; SHA-256 | 0747e7950fe687c3ab16c47390e8715755184a47efb63dffd00b15a5ba393195; Download | Favorite | View

Mandriva Linux Security Advisory 2014-122: Posted Jun 12, 2014; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2014-122 - The chkrootkit script contains a flaw that allows a local attacker to create an executable in /tmp that will be run by the user running chkrootkit, allowing the attacker to escalate privileges.; tags | advisory, local; systems | linux, mandriva; advisories | CVE-2014-0476; SHA-256 | 3e7d73d263162ed54908af5486e530dcf8a03564ed24684a8b26a9b7f5160756; Download | Favorite | View

Debian Security Advisory 2945-1: Posted Jun 5, 2014; Authored by Debian | Site debian.org; Debian Linux Security Advisory 2945-1 - Thomas Stangner discovered a vulnerability in chkrootkit, a rootkit detector, which may allow local attackers to gain root access when /tmp is mounted without the noexec option.; tags | advisory, local, root; systems | linux, debian; advisories | CVE-2014-0476; SHA-256 | 4b40aa0f2ad33b2e2636d7b46693b635f936d7615ef89487925b8fef3321390f; Download | Favorite | View

Ubuntu Security Notice USN-2230-1: Posted Jun 5, 2014; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 2230-1 - Thomas Stangner discovered that chkrootkit incorrectly quoted certain values. A local attacker could use this issue to execute arbitrary code when chkrootkit is run and gain root privileges.; tags | advisory, arbitrary, local, root; systems | linux, ubuntu; advisories | CVE-2014-0476; SHA-256 | f11e85e6894830aa661e658a635b9b5d789438cf8bc381a15e40e48d556a589f; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 307 files
indoushka 124 files
Ubuntu 97 files
Gentoo 32 files
Debian 23 files
LiquidWorm 19 files
malvuln 8 files
Google Security Research 8 files
verylazytech 3 files
Seth Jenkins 3 files

File Archives

Systems

AIX (430)
Apple (2,117)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,144)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,599)
HPUX (881)
iOS (391)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,634)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,102)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,937)
UNIX (9,469)
UnixWare (188)
Windows (6,784)
Other

CVE-2014-0476

Overview

Related Files

File Archive:

October 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems