Sawmill for Solaris 6.2.14 and earlier creates the AdminPassword file with world-writable permissions, which allows local users to gain privileges by modifying the file.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Sawmill | Sawmill | 6.2 (including) | 6.2 (including) |
| Sawmill | Sawmill | 6.2.1 (including) | 6.2.1 (including) |
| Sawmill | Sawmill | 6.2.2 (including) | 6.2.2 (including) |
| Sawmill | Sawmill | 6.2.3 (including) | 6.2.3 (including) |
| Sawmill | Sawmill | 6.2.4 (including) | 6.2.4 (including) |
| Sawmill | Sawmill | 6.2.5 (including) | 6.2.5 (including) |
| Sawmill | Sawmill | 6.2.6 (including) | 6.2.6 (including) |
| Sawmill | Sawmill | 6.2.7 (including) | 6.2.7 (including) |
| Sawmill | Sawmill | 6.2.8 (including) | 6.2.8 (including) |
| Sawmill | Sawmill | 6.2.8a (including) | 6.2.8a (including) |
| Sawmill | Sawmill | 6.2.9 (including) | 6.2.9 (including) |
| Sawmill | Sawmill | 6.2.10 (including) | 6.2.10 (including) |
| Sawmill | Sawmill | 6.2.11 (including) | 6.2.11 (including) |
| Sawmill | Sawmill | 6.2.12 (including) | 6.2.12 (including) |
| Sawmill | Sawmill | 6.2.13 (including) | 6.2.13 (including) |
| Sawmill | Sawmill | 6.2.14 (including) | 6.2.14 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=101346206921270\u0026w=2
- http://www.iss.net/security_center/static/8173.php
- http://www.sawmill.net/version_history.html
- http://www.securityfocus.com/bid/4077
- http://marc.info/?l=bugtraq\u0026m=101346206921270\u0026w=2
- http://www.iss.net/security_center/static/8173.php
- http://www.sawmill.net/version_history.html
- http://www.securityfocus.com/bid/4077