In association with heise online

« previous | next »
9 November 2006, 13:29

Rights elevation in Lotus Domino for Linux

Local users can achieve root rights in IBM's Lotus Domino. This error is based on liberally set rights for the tunekrnl application, through which Lotus Domino can modify the kernel's resource limits. tunekrnl belongs to the root administrator and has the set-user-id bit set.

Because of a lack of length verification for user input in tunekrnl, which is copied into a fixed-size buffer, skillful local users could plant arbitrary program code and execute it with root rights.

The flaw affects Domino 6.x and 7.0.x from the zSeries Linux as well as Domino 7.0.x for Linux on x86 architecture. IBM has removed the flaw in Domino versions 6.5.5 Fix Pack 2 and Domino 7.0.2. Users who cannot switch to the new version can alternatively rename or delete tunekrnl or remove its setuid bit.

See also:

(ehe)

« previous | next »
Print Version | Send by email | Permalink: http://h-online.com/-731781

Also on The H:

  • Share this article
  • Twitter
  • Facebook
  • digg this
  • submit to slashdot
  • post to delicious
  • StumbleUpon
  • submit to reddit
The H Open Headlines

Price Insight Top 10 powered by Skinflint

  1. Samsung SSD 830 Series 128GB
  2. Samsung SSD 830 Series 256GB
  3. Samsung SSD 830 Series Desktop Upgrade Kit 256GB
  4. Intel Core i5-3570K
  5. Samsung Galaxy S3 i9300 16GB blau
  6. Gigabyte GeForce GTX 670 OC
  7. Crucial m4 SSD 128GB
  8. Diablo 3 (deutsch)
  9. Palit GeForce GTX 670
  10. Samsung Galaxy Nexus i9250 16GB silber

The H

The H open source

The H Security

The H Internet Toolkit