Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Unix :: General :: aa200001.txt

Majordomo open() call vulnerability




-----BEGIN PGP SIGNED MESSAGE-----

===========================================================================
AA-2000.01                    AUSCERT Advisory

                     Majordomo open() call Vulnerability
                               20 January 2000

Last Revised: --

- ---------------------------------------------------------------------------

AusCERT has received information that a vulnerability exists in the
majordomo package versions up to and including 1.94.4.

This vulnerability may allow local users to gain the privileges of
the user the majordomo process executes as and that of the local mail
delivery agent.

Exploit information involving this vulnerability has been made publicly
available.

AusCERT recommends that sites take the steps outlined in section 3 as soon
as possible.

This advisory will be updated as more information becomes available.

- ---------------------------------------------------------------------------

1.  Description

    The majordomo program is a popular application which automates the
    management of Internet mailing lists.  More information on majordomo
    is available from:

	http://www.greatcircle.com/majordomo/

    A vulnerability exists in majordomo versions up to and including 1.94.4.

    Exploit information involving this vulnerability has been made publicly
    available.

2.  Impact

    This vulnerability may allow local users to gain the privileges under
    which majordomo and the local mail delivery agent executes.  Depending
    on the local majordomo configuration this may be leveraged to gain
    additional privileges.

3.  Solution

    The vendors of majordomo have produced a minor software release which
    addresses the vulnerability in versions 1.94.4 and earlier.  Sites using
    affected versions should immediately upgrade to majordomo 1.94.5 which
    is available from:

        ftp://ftp.greatcircle.com/pub/majordomo/1.94.5/majordomo-1.94.5.tgz
	ftp://ftp.sgi.com/other/majordomo/majordomo-1.94.5.tgz


4.  Additional measures

    Sites using majordomo should also take this opportunity to ensure that
    their majordomo is configured correctly.  While correct configuration does
    not prevent the vulnerability listed in this advisory being exploited it 
    may help limit the privileges a local user may gain.  More information
    on this can be found in the INSTALL file and in the majordomo FAQ
    available at:

	http://www.greatcircle.com/majordomo/FAQ.html

- ---------------------------------------------------------------------------
AusCERT thanks Chan Wilson and Brock Tellier for their assistance in
producing this advisory.
- ---------------------------------------------------------------------------

AusCERT has made every effort to ensure that the information contained
in this document is accurate.  However, the decision to use the information
described is the responsibility of each user or organisation.  The
appropriateness of this document for an organisation or individual system
should be considered before application in conjunction with local policies
and procedures.  AusCERT takes no responsibility for the consequences of
applying the contents of this document.

If you believe that your system has been compromised, contact AusCERT or
your representative in FIRST (Forum of Incident Response and Security
Teams).

AusCERT maintains an anonymous FTP service which is found on:
ftp://ftp.auscert.org.au/pub/.  This archive contains past SERT and AusCERT
Advisories, and other computer security information.

AusCERT also maintains a World Wide Web service which is found on:
http://www.auscert.org.au/.

Internet Email: auscert@auscert.org.au
Facsimile:	(07) 3365 7031
Telephone:	(07) 3365 4417 (International: +61 7 3365 4417)
		AusCERT personnel answer during Queensland business hours
		which are GMT+10:00 (AEST).
		On call after hours for emergencies.

Postal:
Australian Computer Emergency Response Team
The University of Queensland
Brisbane        
Qld  4072     
AUSTRALIA       


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Revision History


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3i
Charset: noconv
Comment: ftp://ftp.auscert.org.au/pub/auscert/AUSCERT_PGP.key

iQCVAwUBOJ/aTih9+71yA2DNAQGdNAQAilL3CteA5VqQXc2rJMcR1D/9/O2/R1UK
sA1FlMgZFhX+ELtOleDmqzWoWWIMtgecLPqlTKiyvrcwn4Z2WQ3uW6no85uODspq
sXWOkbUFn88U/64SKCKaEABI+0mlLJKkFSpyPMEEj1U/O8DSyyRBxIyJYVR8CQgp
ylz7TG5ritk=
=E7lM
-----END PGP SIGNATURE-----


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH