CVE-2004-0850 - Vulnerability Details - OpenCVE

Star before 1.5_alpha46 does not drop the effective user ID (euid) before calling external programs, which could allow local users to gain privileges by modifying the RSH environment variable to reference a malicious program.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Joerg Schilling	Star Tape Archiver

Configuration 1 [-]

cpe:2.3:a:joerg_schilling:star_tape_archiver:1.5_a45:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://securitytracker.com/id?1011195
http://www.gentoo.org/security/en/glsa/glsa-200409-11.xml
http://www.kb.cert.org/vuls/id/339089
http://www.securityfocus.com/bid/11141
https://exchange.xforce.ibmcloud.com/vulnerabilities/17297

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2004-09-24T04:00:00

Updated: 2024-08-08T00:31:47.903Z

Reserved: 2004-09-13T00:00:00

Link: CVE-2004-0850

Vulnrichment

No data.

NVD

Status : Modified

Published: 2004-12-23T05:00:00.000

Modified: 2024-11-20T23:49:34.050

Link: CVE-2004-0850

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2004-09-07T00:00:00", "descriptions": [{"lang": "en", "value": "Star before 1.5_alpha46 does not drop the effective user ID (euid) before calling external programs, which could allow local users to gain privileges by modifying the RSH environment variable to reference a malicious program."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1011195", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1011195"}, {"name": "star-ssh-gain-privileges(17297)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17297"}, {"name": "VU#339089", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/339089"}, {"name": "GLSA-200409-11", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-11.xml"}, {"name": "11141", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/11141"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-0850", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Star before 1.5_alpha46 does not drop the effective user ID (euid) before calling external programs, which could allow local users to gain privileges by modifying the RSH environment variable to reference a malicious program."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1011195", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1011195"}, {"name": "star-ssh-gain-privileges(17297)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17297"}, {"name": "VU#339089", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/339089"}, {"name": "GLSA-200409-11", "refsource": "GENTOO", "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-11.xml"}, {"name": "11141", "refsource": "BID", "url": "http://www.securityfocus.com/bid/11141"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T00:31:47.903Z"}, "title": "CVE Program Container", "references": [{"name": "1011195", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1011195"}, {"name": "star-ssh-gain-privileges(17297)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17297"}, {"name": "VU#339089", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/339089"}, {"name": "GLSA-200409-11", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-11.xml"}, {"name": "11141", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/11141"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-0850", "datePublished": "2004-09-24T04:00:00", "dateReserved": "2004-09-13T00:00:00", "dateUpdated": "2024-08-08T00:31:47.903Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:joerg_schilling:star_tape_archiver:1.5_a45:*:*:*:*:*:*:*", "matchCriteriaId": "CE72F5B7-04A1-42AC-B024-81C7D63391DC", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Star before 1.5_alpha46 does not drop the effective user ID (euid) before calling external programs, which could allow local users to gain privileges by modifying the RSH environment variable to reference a malicious program."}, {"lang": "es", "value": "Star anteriores a 1.5_alpha46 no libera la ID de usuario efectiva (euid) antes de llamar a programas externos, lo que podr\u00eda permitir a usuarios locales ganar privilegios modificando la variable de entorno RSH para hacer referncia a programas maliciosos."}], "id": "CVE-2004-0850", "lastModified": "2024-11-20T23:49:34.050", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2004-12-23T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1011195"}, {"source": "cve@mitre.org", "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-11.xml"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/339089"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/11141"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17297"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1011195"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-11.xml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/339089"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/11141"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17297"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}