CVE-2007-1507

Severity

75%

Complexity

99%

Confidentiality

106%

The default configuration in OpenAFS 1.4.x before 1.4.4 and 1.5.x before 1.5.17 supports setuid programs within the local cell, which might allow attackers to gain privileges by spoofing a response to an AFS cache manager FetchStatus request, and setting setuid and root ownership for files in the cache.

The default configuration in OpenAFS 1.4.x before 1.4.4 and 1.5.x before 1.5.17 supports setuid programs within the local cell, which might allow attackers to gain privileges by spoofing a response to an AFS cache manager FetchStatus request, and setting setuid and root ownership for files in the cache.

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

Type

OpenAFS

First reported 17 years ago

2007-03-20 10:19:00

Last updated 7 years ago

2017-07-29 01:30:00

Affected Software

OpenAFS 1.4.0

1.4.0

OpenAFS 1.4.1

1.4.1

OpenAFS 1.4.2

1.4.2

OpenAFS 1.4.3

1.4.3

OpenAFS 1.4.4

1.4.4

OpenAFS 1.5.0

1.5.0

OpenAFS 1.5.1

1.5.1

OpenAFS 1.5.2

1.5.2

OpenAFS 1.5.3

1.5.3

OpenAFS 1.5.5

1.5.5

OpenAFS 1.5.6

1.5.6

OpenAFS 1.5.7

1.5.7

OpenAFS 1.5.8

1.5.8

OpenAFS 1.5.9

1.5.9

OpenAFS 1.5.10

1.5.10

OpenAFS 1.5.11

1.5.11

OpenAFS 1.5.12

1.5.12

OpenAFS 1.5.13

1.5.13

OpenAFS 1.5.14

1.5.14

OpenAFS 1.5.15

1.5.15

OpenAFS 1.5.16

1.5.16

References

24582

Vendor Advisory

24599

Vendor Advisory

24607

Vendor Advisory

24720

GLSA-200704-03

DSA-1271

Vendor Advisory

MDKSA-2007:066

[OpenAFS-announce] 20070319 OpenAFS 1.4.4 available

Vendor Advisory

[OpenAFS-announce] 20070319 OpenAFS 1.5.17 release available

Patch, Vendor Advisory

[OpenAFS-announce] 20070320 OpenAFS Security Advisory 2007-001: privilege escalation in Unix-based clients

23060

1017807

ADV-2007-1033

Vendor Advisory

openafs-setuid-privilege-escalation(33180)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.