[Sun] Schwachstelle in OpenSolaris MDB – 255608

[Sun] Schwachstelle in OpenSolaris MDB - 255608

Von

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA1

Liebe Kolleginnen und Kollegen,

soeben erreichte uns nachfolgendes Sun Security Advisory. Wir geben
diese Informationen unveraendert an Sie weiter.

Schwachstelle in OpenSolaris MDB

Eine Schwachstelle in OpenSolaris erlaubt einem privilegierten
Benutzer in einer Non-global Zone beliebige Befehle in einer Global
Zone auszufuehren, wenn ein in der Global Zone laufender Modularer
Debugger (mdb) Prozess sich an den Non-global Zone Prozess anhaengt.
Ein Angreifer kann diese Schwachstelle ausnutzen um beliebige Befehle
mit den Rechten des mdb Prozesses in der Global Zone ausfuehren.

Betroffen sind die folgenden Software Pakete und Plattformen:

OpenSolaris

SPARC Plattform
* OpenSolaris basierend auf den Builds snv_100 bis snv_101

x86 Plattform
* OpenSolaris basierend auf den Builds snv_100 bis snv_101

Vom Hersteller werden ueberarbeitete Pakete zur Verfuegung gestellt.

Hersteller Advisory:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-255608-1

(c) der deutschen Zusammenfassung bei DFN-CERT Services GmbH; die
Verbreitung, auch auszugsweise, ist nur unter Hinweis auf den Urheber,
DFN-CERT Services GmbH, und nur zu nicht kommerziellen Zwecken
gestattet.

Mit freundlichen Gruessen,
Detlev O. Matthies

– —

Detlev O. Matthies, M.Sc. (Incident Response Team)

DFN-CERT Services GmbH, https://www.dfn-cert.de, Phone +49 40 808077-555
Sitz / Register: Hamburg, AG Hamburg, HRB 88805, Ust-IdNr.: DE 232129737
Sachsenstrasse 5, 20097 Hamburg/Germany, CEO: Dr. Klaus-Peter Kossakowski

Automatische Warnmeldungen https://www.cert.dfn.de/autowarn

Solution Type Sun Alert
Solution 255608 : A Security Vulnerability in OpenSolaris may Allow
a Privileged User Inside a non-global Zone to Execute Arbitrary Code
Within a Global Zone
Related Categories

* Home>Content>Sun Alert Criteria Categories>Security
* Home>Content>Sun Alert Release Phase>Resolved

Bug ID
6756058

Product
OpenSolaris

Date of Resolved Release
26-Mar-2009

SA Document Body
A security vulnerability in OpenSolaris may allow a privileged user inside a no
n-global zone to execute arbitrary code within a global zone:

1. Impact
Local privileged users inside a non-global zone may be able to execute
arbitrary code within a global zone if an mdb process within the global
zone attaches to a non-global zone process. The code would be executed
with the privileges of the user running mdb, which could potentially be
root.
2. Contributing Factors
This issue can occur in the following releases:
SPARC Platform
* OpenSolaris based upon builds snv_100 through snv_101

x86 Platform
* OpenSolaris based upon builds snv_100 through snv_101

Note 1: Solaris 8, 9 and 10 are not impacted by this issue.
Note 2: OpenSolaris distributions may include additional bug fixes
above and beyond the build from which it was derived. To determine the
base build of OpenSolaris, the following command can be used:
$ uname -v
snv_86

3. Symptoms
There are no predictable symptoms that would indicate the described
issue has been exploited.
4. Workaround
To avoid this issue, do not use mdb from the global zone to debug
processes in the non-global zone.
5. Resolution
This issue is addressed in the following releases:
SPARC Platform
* OpenSolaris based upon builds snv_102 or later

x86 Platform
* OpenSolaris based upon builds snv_102 or later

For more information on Security Sun Alerts, see Technical Instruction
ID 213557.
This Sun Alert notification is being provided to you on an “AS IS”
basis. This Sun Alert notification may contain information provided by
third parties. The issues described in this Sun Alert notification may
or may not impact your system(s). Sun makes no representations,
warranties, or guarantees as to the information contained herein. ANY
AND ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING WITHOUT LIMITATION
WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR
NON-INFRINGEMENT, ARE HEREBY DISCLAIMED. BY ACCESSING THIS DOCUMENT YOU
ACKNOWLEDGE THAT SUN SHALL IN NO EVENT BE LIABLE FOR ANY DIRECT,
INDIRECT, INCIDENTAL, PUNITIVE, OR CONSEQUENTIAL DAMAGES THAT ARISE OUT
OF YOUR USE OR FAILURE TO USE THE INFORMATION CONTAINED HEREIN. This
Sun Alert notification contains Sun proprietary and confidential
information. It is being provided to you pursuant to the provisions of
your agreement to purchase services from Sun, or, if you do not have
such an agreement, the Sun.com Terms of Use. This Sun Alert
notification may only be used for the purposes contemplated by these
agreements.
Copyright 2000-2009 Sun Microsystems, Inc., 4150 Network Circle, Santa
Clara, CA 95054 U.S.A. All rights reserved.
Attachments
This solution has no attachment

—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFJ0e09k0kIxZMiiQ8RAiQBAJ9JlyDxJhRTjbRRVK1ITp5JuhkxpwCfce64
s+CuQNd9u5PIDlRQ0RW2xJI=
=SK5g
—–END PGP SIGNATURE—–

© COMPUTEC MEDIA GmbH
Nach oben