---------------------------------------------------------------------- Try a new way to discover vulnerabilities that ALREADY EXIST in your IT infrastructure. The Full Featured Secunia Network Software Inspector (NSI) is now available: http://secunia.com/network_software_inspector/ The Secunia NSI enables you to INSPECT, DISCOVER, and DOCUMENT vulnerabilities in more than 4,000 different Windows applications. ---------------------------------------------------------------------- TITLE: Samsung SCX-4200 Driver Installation Script Privilege Escalation SECUNIA ADVISORY ID: SA26092 VERIFY ADVISORY: http://secunia.com/advisories/26092/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: Samsung SCX-4200 Driver 2.x http://secunia.com/product/14826/ DESCRIPTION: hdiamant has discovered a security issue in the Samsung SCX-4200 Driver, which can be exploited by malicious, local users to gain escalated privileges. The problem is that the Samsung SCX-4200 Driver installation script makes some binaries (e.g. xsane, xscanimage, soffice, swriter, simpress, and scalc) setuid. This can be exploited to gain escalated privileges by executing one of the affected files. The security issue has been confirmed in version 2.00.95. Other versions may also be vulnerable. SOLUTION: Uninstall the driver or remove the setuid bit from the affected binaries. PROVIDED AND/OR DISCOVERED BY: hdiamant ORIGINAL ADVISORY: http://linuxfr.org/forums/15/22562.html OTHER REFERENCES: http://it.slashdot.org/it/07/07/18/0319203.shtml ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------