Internet Message (IM) 141-18 and earlier uses predictable file and directory names, which allows local users to (1) obtain unauthorized directory permissions via a temporary directory used by impwagent, and (2) overwrite and create arbitrary files via immknmz.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Internet_message | Debian | 133-0 (including) | 133-0 (including) |
| Internet_message | Debian | 141-0 (including) | 141-0 (including) |
| Red Hat Enterprise Linux AS (Advanced Server) version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux ES version 2.1 | RedHat | * | |
| Red Hat Enterprise Linux WS version 2.1 | RedHat | * | |
| Red Hat Linux 7.0 | RedHat | * | |
| Red Hat Linux 7.1 | RedHat | * | |
| Red Hat Linux 7.2 | RedHat | * | |
| Red Hat Linux 7.3 | RedHat | * | |
| Red Hat Linux 8.0 | RedHat | * | |
| Red Hat Linux Advanced Workstation 2.1 | RedHat | * |
References
- http://secunia.com/advisories/8166
- http://secunia.com/advisories/8242
- http://www.debian.org/security/2002/dsa-202
- http://www.iss.net/security_center/static/10766.php
- http://www.iss.net/security_center/static/10767.php
- http://www.redhat.com/support/errata/RHSA-2003-039.html
- http://www.securityfocus.com/bid/6307
- http://secunia.com/advisories/8166
- http://secunia.com/advisories/8242
- http://www.debian.org/security/2002/dsa-202
- http://www.iss.net/security_center/static/10766.php
- http://www.iss.net/security_center/static/10767.php
- http://www.redhat.com/support/errata/RHSA-2003-039.html
- http://www.securityfocus.com/bid/6307