Unzuthorized file access via file stdio decriptors in multiple Unix systems

2007-01-1800:00:00

SECURITEAM

vulners.com

JSON

By exhausting all file descriptors and closing stderr it's possible to causesituation called application will open new file with descriptor 2 and all stderr output will be redirected to file. In few systems it's enougth to close standard descriptor.

CPENameOperatorVersion
openbsdeq2.9
solariseq9
freebsdeq4.5
open unixeq8.0
openbsdeq3.1
aixeq5.3
hp-uxeq11.11
unixwareeq7.1
freebsdeq5.0
openbsdeq3.0

Name	Operator	Version
openbsd	eq	2.9
solaris	eq	9
freebsd	eq	4.5
open unix	eq	8.0
openbsd	eq	3.1
aix	eq	5.3
hp-ux	eq	11.11
unixware	eq	7.1
freebsd	eq	5.0
openbsd	eq	3.0

References

vulners.com/securityvulns/securityvulns:doc:15751

vulners.com/securityvulns/securityvulns:doc:2823

vulners.com/securityvulns/securityvulns:doc:2825

vulners.com/securityvulns/securityvulns:doc:2826

vulners.com/securityvulns/securityvulns:doc:2911

vulners.com/securityvulns/securityvulns:doc:3854

JSON

Related for SECURITYVULNS:VULN:1956