Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Gentoo 200304-09: Mgetty multiple vulnerabilities

Gentoo 200304-09: Mgetty multiple vulnerabilities

by Nikola Strahija on April 30th, 2003 Several vulnerabilities were discovered in Mgetty versions 1.1.29 and earlier which, if exploited, could allow remote attackers to alter the fax transmission privileges or cause denial of service attack.


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - - ---------------------------------------------------------------------
GENTOO LINUX SECURITY ANNOUNCEMENT 200304-09
- - - ---------------------------------------------------------------------

PACKAGE : mgetty
SUMMARY : buffer overflow, insecure spool dir
DATE : 2003-04-28 10:17 UTC
EXPLOIT : remote
VERSIONS AFFECTED : FIXED VERSION : >=mgetty-1.1.29
CVE : CAN-2002-1391 CAN-2002-1392

- - - ---------------------------------------------------------------------

* faxspool in mgetty before 1.1.29 uses a world-writable spool directory
for outgoing faxes, which allows local users to modify fax transmission
privileges.

* Buffer overflow in cnd-program for mgetty before 1.1.29 allows remote
attackers to cause a denial of service and possibly execute arbitrary
code via a Caller ID string with a long CallerName argument.

SOLUTION

It is recommended that all Gentoo Linux users who are running
net-dialup/mgetty upgrade to mgetty-1.1.30 as follows:

emerge sync
emerge mgetty
emerge clean

- - - ---------------------------------------------------------------------
[email protected] - GnuPG key is available at http://cvs.gentoo.org/~aliz
- - - ---------------------------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQE+rP/MfT7nyhUpoZMRAokdAJ91QAEmv7Nr7Hzgp43J0HCDwQfBwwCgt1zc
P5fwqg1Nhom86cg231An8y4=
=nFXu
-----END PGP SIGNATURE-----


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »