Info

Disclosure

Mar 17, 2006

Discovery

Unknown

Dates

Exploit

Mar 17, 2006

Solution

Unknown

Description

Beagle contains a flaw that may allow a local attacker to trick a user into executing arbitrary commands. The issue is due to the 'beagle-status' script not securely calling the 'beagle-info' file. By placing an alternate beagle-info file in a directory such as /tmp, there is a chance a user will execute the script and have any commands in the beagle-info file executed with the privileges of the user running the script.

Classification

Location: Local Access Required
Attack Type: Misconfiguration
Impact: Loss of Integrity
Exploit: Exploit Public
Disclosure: Vendor Verified

Solution

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: edit the beagle-status script to call the 'beagle-info' script with the full path

Products

Beagle

0.2.2

References

Secunia Advisory ID: 19278 19336
CVE ID: 2006-1296 (see also: NVD)
Vendor URL: http://beaglewiki.org/
Vendor Specific News/Changelog Entry: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=357392

Credit

James McCaw - james.mccawgmail.com -

Direct URL: http://osvdb.org/23942