exploits , vulnerabilities , articles , BZip2 CHMod File Permission Modification Race Condition Weakness

Title	BZip2 CHMod File Permission Modification Race Condition Weakness
Published	2005-03-31-12:00AM
Updated	2005-11-15-04:26PM
Class	Race Condition Error
CVE	CAN-2005-0953
Remote	No
Local	Yes
Credit	Discovery of this weakness is credited to Imran Ghory <imranghory@gmail.com>.
Vulnerable	Ubuntu Ubuntu Linux 5.0 4 powerpc Ubuntu Ubuntu Linux 5.0 4 i386 Ubuntu Ubuntu Linux 5.0 4 amd64 Ubuntu Ubuntu Linux 4.1 ppc Ubuntu Ubuntu Linux 4.1 ia64 Ubuntu Ubuntu Linux 4.1 ia32 Turbolinux Turbolinux Workstation 8.0 Turbolinux Turbolinux Workstation 7.0 Turbolinux Turbolinux Server 10.0 Turbolinux Turbolinux Server 8.0 Turbolinux Turbolinux Server 7.0 Turbolinux Turbolinux Desktop 10.0 Turbolinux Home Turbolinux Appliance Server 1.0 Workgroup Edition Turbolinux Appliance Server 1.0 Hosting Edition SGI ProPack 3.0 SP5 RedHat Linux 9.0 i386 RedHat Linux 7.3 i686 RedHat Linux 7.3 i386 RedHat Linux 7.3 RedHat Fedora Core2 RedHat Fedora Core1 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux WS 2.1 IA64 RedHat Enterprise Linux WS 2.1 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux ES 3 RedHat Enterprise Linux ES 2.1 IA64 RedHat Enterprise Linux ES 2.1 RedHat Enterprise Linux AS 4 RedHat Enterprise Linux AS 3 RedHat Enterprise Linux AS 2.1 IA64 RedHat Enterprise Linux AS 2.1 RedHat Desktop 4.0 RedHat Desktop 3.0 RedHat Advanced Workstation for the Itanium Processor 2.1 IA64 RedHat Advanced Workstation for the Itanium Processor 2.1 OpenPKG OpenPKG 2.3 OpenPKG OpenPKG 2.2 MandrakeSoft Linux Mandrake 10.2 x86_64 MandrakeSoft Linux Mandrake 10.2 MandrakeSoft Linux Mandrake 10.1 x86_64 MandrakeSoft Linux Mandrake 10.1 MandrakeSoft Linux Mandrake 10.0 amd64 MandrakeSoft Linux Mandrake 10.0 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 MandrakeSoft Corporate Server 2.1 x86_64 MandrakeSoft Corporate Server 2.1 FreeBSD FreeBSD 5.4 RELENG FreeBSD FreeBSD 5.4 RELEASE FreeBSD FreeBSD 5.4 PRERELEASE FreeBSD FreeBSD 5.3 STABLE FreeBSD FreeBSD 5.3 RELENG FreeBSD FreeBSD 5.3 RELEASE FreeBSD FreeBSD 5.3 FreeBSD FreeBSD 5.2.1 RELEASE FreeBSD FreeBSD 5.2 RELENG FreeBSD FreeBSD 5.2 RELEASE FreeBSD FreeBSD 5.2 FreeBSD FreeBSD 5.1 RELENG FreeBSD FreeBSD 5.1 RELEASE/Alpha FreeBSD FreeBSD 5.1 RELEASEp5 FreeBSD FreeBSD 5.1 RELEASE FreeBSD FreeBSD 5.1 FreeBSD FreeBSD 5.0 RELENG FreeBSD FreeBSD 5.0 RELEASEp14 FreeBSD FreeBSD 5.0 alpha FreeBSD FreeBSD 5.0 FreeBSD FreeBSD 4.11 STABLE FreeBSD FreeBSD 4.11 RELENG FreeBSD FreeBSD 4.11 RELEASEp3 FreeBSD FreeBSD 4.10 RELENG FreeBSD FreeBSD 4.10 RELEASEp8 FreeBSD FreeBSD 4.10 RELEASE FreeBSD FreeBSD 4.10 FreeBSD FreeBSD 4.9 RELENG FreeBSD FreeBSD 4.9 PRERELEASE FreeBSD FreeBSD 4.9 FreeBSD FreeBSD 4.8 RELENG FreeBSD FreeBSD 4.8 RELEASEp7 FreeBSD FreeBSD 4.8 PRERELEASE FreeBSD FreeBSD 4.8 FreeBSD FreeBSD 4.7 STABLE FreeBSD FreeBSD 4.7 RELENG FreeBSD FreeBSD 4.7 RELEASEp17 FreeBSD FreeBSD 4.7 RELEASE FreeBSD FreeBSD 4.7 FreeBSD FreeBSD 4.6.2 FreeBSD FreeBSD 4.6 STABLE FreeBSD FreeBSD 4.6 RELENG FreeBSD FreeBSD 4.6 RELEASEp20 FreeBSD FreeBSD 4.6 RELEASE FreeBSD FreeBSD 4.6 FreeBSD FreeBSD 4.5 STABLEpre20020307 FreeBSD FreeBSD 4.5 STABLE FreeBSD FreeBSD 4.5 RELENG FreeBSD FreeBSD 4.5 RELEASEp32 FreeBSD FreeBSD 4.5 RELEASE FreeBSD FreeBSD 4.5 FreeBSD FreeBSD 4.4 STABLE FreeBSD FreeBSD 4.4 RELENG FreeBSD FreeBSD 4.4 RELENG FreeBSD FreeBSD 4.4 RELEASEp42 FreeBSD FreeBSD 4.4 FreeBSD FreeBSD 4.3 STABLE FreeBSD FreeBSD 4.3 RELENG FreeBSD FreeBSD 4.3 RELEASEp38 FreeBSD FreeBSD 4.3 RELEASE FreeBSD FreeBSD 4.3 FreeBSD FreeBSD 4.2 STABLEpre122300 FreeBSD FreeBSD 4.2 STABLEpre050201 FreeBSD FreeBSD 4.2 STABLE FreeBSD FreeBSD 4.2 RELEASE FreeBSD FreeBSD 4.2 FreeBSD FreeBSD 4.1.1 STABLE FreeBSD FreeBSD 4.1.1 RELEASE FreeBSD FreeBSD 4.1.1 FreeBSD FreeBSD 4.1 FreeBSD FreeBSD 4.0 .x FreeBSD FreeBSD 4.0 RELENG FreeBSD FreeBSD 4.0 alpha FreeBSD FreeBSD 4.0 bzip2 bzip2 1.0.2 bzip2 bzip2 1.0.1 FreeBSD FreeBSD 4.4 FreeBSD FreeBSD 4.5 Trustix Secure Linux 1.1 Trustix Secure Linux 1.2 Trustix Secure Linux 1.5 bzip2 bzip2 1.0 bzip2 bzip2 0.9.5 d bzip2 bzip2 0.9.5 c bzip2 bzip2 0.9.5 b bzip2 bzip2 0.9.5 a bzip2 bzip2 0.9 c bzip2 bzip2 0.9 b bzip2 bzip2 0.9 a bzip2 bzip2 0.9
Not Vulnerable
Code	No exploit is required.
TXT

Vulnerabilities - newest 10 RSS | More

• 2008-12-01 SystemImager Flamethrower Insecure Temporary File Creation Vulnerabilities
• 2008-12-01 Rumpus FTP Server Command Argument Remote Buffer Overflow Vulnerability
• 2008-12-01 Rumpus FTP Server HTTP Command Remote Denial of Service Vulnerability
• 2008-11-29 Multiple ActiveWebSoftwares Products Login Parameters SQL Injection Vulnerabilities
• 2008-11-29 Venalsur Booking Centre Multiple Cross-Site Scripting Vulnerabilities
• 2008-11-28 ReVou Login SQL Injection Vulnerability
• 2008-11-28 Web Calendar System SQL Injection and Cross Site Scripting Vulnerabilities
• 2008-11-28 SailPlanner Login SQL Injection Vulnerability
• 2008-11-28 Livio.net WEB Calendar Cross Site Scripting and Multiple SQL Injection Vulnerabilities
• 2008-11-28 Subtext Anchor Tags HTML Injection Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Tue, 02 Dec 2008 05:28:09 +0000