SGI IRIX Checkpoint/Restart File Overwrite Vulnerability

Open forum for security issues and info.
Forum rules
Any posts concerning pirated software or offering to buy/sell/trade commercial software are subject to removal.
User avatar
squeen
Moderator
Moderator
Posts: 2933
Joined: Fri May 09, 2003 6:10 am
Location: Maryland, USA

SGI IRIX Checkpoint/Restart File Overwrite Vulnerability

Unread postby squeen » Mon Aug 18, 2003 4:50 am

The SGI IRIX Checkpoint/Restart system contains a vulnerability that may allow a local attacker to overwrite or truncate files on the system. Patches are available.


Description
-------------------------------------------------------------------------------------
SGI IRIX 6.5.21f or 6.5.21m and prior contain a vulnerability in the Checkpoint/Restart software (cpr) that may allow an unprivileged local user to overwrite or truncate files. The cpr binary is installed by default as part of the eoe.sw.cpr package on 32-bit systems. It is default-installed as part of the eoe.sw64.lib package on 64-bit systems.

Impact
- -------------------------------------------------------------------------------------
A local attacker may be able to overwrite or truncate files without appropriate permissions.

Warning Indicators
-------------------------------------------------------------------------------------
Systems running SGI IRIX 6.5.21f or 6.5.21m and prior with Checkpoint/Restart installed are vulnerable.

Technical Information
-------------------------------------------------------------------------------------
The vulnerability occurs as the result of a weakness in the libcpr library, which is loaded by the cpr binary. The 32-bit and 64-bit versions of libcpr are affected.

The 32-bit version of libcpr is installed by default as part of an optional eoe.sw.cpr package. The 64-bit version of libcpr is installed by default as part of the optional eoe.sw64.lib package installed on 64-bit systems.

SGI has released a security advisory at the following FTP link: ["[url]ftp://patches.sgi.com/support/free/secu ... 30802-01-P">20030802-01-P[/url]]

SGI has released patches at the following FTP link: ["ftp://patches.sgi.com/support/free/security/patches/">SGI]


IRIX OS - Patch ID
IRIX 6.5.17m - 5264
IRIX 6.5.17f - 5265
IRIX 6.5.18m and 6.5.19m - 5266
IRIX 6.5.18f and 6.5.19f - 5267
IRIX 6.5.20m and 6.5.20f - 5268
IRIX 6.5.21m and 6.5.21f
- - 5269

Return to “SGI: Security”

Who is online

Users browsing this forum: No registered users and 1 guest