Roaring Penguin pppoe (rp-ppoe), if installed or configured to run setuid root contrary to its design, allows local users to overwrite arbitrary files. NOTE: the developer has publicly disputed the claim that this is a vulnerability because pppoe is NOT designed to run setuid-root. Therefore this identifier applies only to those configurations and installations under which pppoe is run setuid root despite the developers warnings.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Pppoe | Roaring_penguin | 3.0 (including) | 3.0 (including) |
| Pppoe | Roaring_penguin | 3.3 (including) | 3.3 (including) |
| Pppoe | Roaring_penguin | 3.5 (including) | 3.5 (including) |
| Rp-pppoe | Ubuntu | dapper | * |
| Rp-pppoe | Ubuntu | devel | * |
| Rp-pppoe | Ubuntu | edgy | * |
| Rp-pppoe | Ubuntu | feisty | * |
References
- http://marc.info/?l=bugtraq\u0026m=110247119200510\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=110253341209450\u0026w=2
- http://www.debian.org/security/2004/dsa-557
- http://www.fedoralegacy.org/updates/FC1/2005-11-14-FLSA_2005_152794__Updated_rp_pppoe_package_fixes_security_issue.html
- http://www.securityfocus.com/bid/11315
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17576
- http://marc.info/?l=bugtraq\u0026m=110247119200510\u0026w=2
- http://marc.info/?l=bugtraq\u0026m=110253341209450\u0026w=2
- http://www.debian.org/security/2004/dsa-557
- http://www.fedoralegacy.org/updates/FC1/2005-11-14-FLSA_2005_152794__Updated_rp_pppoe_package_fixes_security_issue.html
- http://www.securityfocus.com/bid/11315
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17576