Vulnerabilities > CVE-2004-0850 - Local SetUID vulnerability in Joerg Schilling Star Tape Archiver 1.5A45
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Star before 1.5_alpha46 does not drop the effective user ID (euid) before calling external programs, which could allow local users to gain privileges by modifying the RSH environment variable to reference a malicious program.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
| NASL family | Gentoo Local Security Checks |
| NASL id | GENTOO_GLSA-200409-11.NASL |
| description | The remote host is affected by the vulnerability described in GLSA-200409-11 (star: Suid root vulnerability) A suid root vulnerability exists in versions of star that are configured to use ssh for remote tape access. Impact : Attackers with local user level access could potentially gain root level access. Workaround : There is no known workaround at this time. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 14675 |
| published | 2004-09-08 |
| reporter | This script is Copyright (C) 2004-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
| source | https://www.tenable.com/plugins/nessus/14675 |
| title | GLSA-200409-11 : star: Suid root vulnerability |