Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2006-3084

The (1) ftpd and (2) ksu programs in (a) MIT Kerberos 5 (krb5) up to 1.5, and 1.4.x before 1.4.4, and (b) Heimdal 0.7.2 and earlier, do not check return codes for setuid calls, which might allow local users to gain privileges by causing setuid to fail to drop privileges. NOTE: as of 20060808, it is not known whether an exploitable attack scenario exists for these issues.

Published

2006-08-09T10:04:00.000

Last Modified

2025-04-03T01:03:51.193

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 7.2 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Primary
CWE-264

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	heimdal	heimdal	≤ 0.7.2	Yes
Application	mit	kerberos_5	1.4	Yes
Application	mit	kerberos_5	1.4.1	Yes
Application	mit	kerberos_5	1.4.2	Yes
Application	mit	kerberos_5	1.4.3	Yes
Application	mit	kerberos_5	1.5	Yes

References

ftp://ftp.pdc.kth.se/pub/heimdal/src/heimdal-0.7.2-setuid-patch.txt ([email protected])
http://fedoranews.org/cms/node/2376 ([email protected])
http://secunia.com/advisories/21402 Vendor Advisory ([email protected])
http://secunia.com/advisories/21436 Vendor Advisory ([email protected])
http://secunia.com/advisories/21439 Vendor Advisory ([email protected])
http://secunia.com/advisories/21461 Vendor Advisory ([email protected])
http://secunia.com/advisories/21467 Vendor Advisory ([email protected])
http://secunia.com/advisories/21527 Vendor Advisory ([email protected])
http://secunia.com/advisories/21613 Vendor Advisory ([email protected])
http://secunia.com/advisories/23707 Vendor Advisory ([email protected])
http://security.gentoo.org/glsa/glsa-200608-21.xml ([email protected])
http://securitytracker.com/id?1016664 ([email protected])
http://web.mit.edu/Kerberos/advisories/MITKRB5-SA-2006-001-setuid.txt ([email protected])
http://www.debian.org/security/2006/dsa-1146 ([email protected])
http://www.gentoo.org/security/en/glsa/glsa-200608-15.xml ([email protected])
http://www.kb.cert.org/vuls/id/401660 US Government Resource ([email protected])
http://www.novell.com/linux/security/advisories/2006_20_sr.html ([email protected])
http://www.osvdb.org/27871 ([email protected])
http://www.osvdb.org/27872 ([email protected])
http://www.pdc.kth.se/heimdal/advisory/2006-08-08/ ([email protected])
http://www.securityfocus.com/archive/1/442599/100/0/threaded ([email protected])
http://www.securityfocus.com/archive/1/443498/100/100/threaded ([email protected])
http://www.securityfocus.com/bid/19427 ([email protected])
http://www.ubuntu.com/usn/usn-334-1 ([email protected])
http://www.vupen.com/english/advisories/2006/3225 Vendor Advisory ([email protected])
ftp://ftp.pdc.kth.se/pub/heimdal/src/heimdal-0.7.2-setuid-patch.txt (af854a3a-2127-422b-91ae-364da2661108)
http://fedoranews.org/cms/node/2376 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/21402 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/21436 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/21439 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/21461 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/21467 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/21527 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/21613 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/23707 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-200608-21.xml (af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1016664 (af854a3a-2127-422b-91ae-364da2661108)
http://web.mit.edu/Kerberos/advisories/MITKRB5-SA-2006-001-setuid.txt (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2006/dsa-1146 (af854a3a-2127-422b-91ae-364da2661108)
http://www.gentoo.org/security/en/glsa/glsa-200608-15.xml (af854a3a-2127-422b-91ae-364da2661108)
http://www.kb.cert.org/vuls/id/401660 US Government Resource (af854a3a-2127-422b-91ae-364da2661108)
http://www.novell.com/linux/security/advisories/2006_20_sr.html (af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/27871 (af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/27872 (af854a3a-2127-422b-91ae-364da2661108)
http://www.pdc.kth.se/heimdal/advisory/2006-08-08/ (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/442599/100/0/threaded (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/443498/100/100/threaded (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/19427 (af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/usn-334-1 (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2006/3225 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)