vendor:
ectiva, Debian, IBM AIX, Mandrake Linux, RedHat Linux, IRIX, Solaris, Turbolinux, Wirex Immunix OS
by:
Unknown
7.5
CVSS
HIGH
Format String Vulnerability
134
CWE
Product Name: ectiva, Debian, IBM AIX, Mandrake Linux, RedHat Linux, IRIX, Solaris, Turbolinux, Wirex Immunix OS
Affected Version From: ectiva 4.x/5.x, Debian 2.x, IBM AIX 3.x/4.x, Mandrake 7, RedHat 5.x/6.x, IRIX 6.x, Solaris 2.x/7/8, Turbolinux 6.x, Wirex Immunix OS 6.2
Affected Version To: Unknown
Patch Exists: NO
Related CWE: CVE-2000-0589
CPE: o:debian:debian_linux:2.0::x86, cpe:/o:ibm:aix:3.0.0, cpe:/o:ibm:aix:4.0.0, cpe:/o:mandrakesoft:mandrake_linux:7.0, cpe:/o:redhat:linux:5.0, cpe:/o:redhat:linux:6.0, cpe:/o:sun:solaris:2.0, cpe:/o:sun:solaris:7, cpe:/o:sun:solaris:8
Platforms Tested: UNIX operating systems (specific versions mentioned in 'Affected-Version-From')
Unknown
Locale Subsystem Format String Vulnerability
The locale subsystem in many UNIX operating systems is vulnerable to a format string vulnerability. By manipulating the custom messages database, an attacker can control the output of the message retrieval functions and execute arbitrary code as a privileged user. This vulnerability can be exploited locally or remotely, but remote exploitation requires the ability to place the suitable messages database on the target host.
Mitigation:
Apply relevant security patches or updates provided by the vendor. Avoid using SUID programs or restrict their usage to trusted users only. Monitor network traffic for any unauthorized attempts to place the messages database on the target host.
