Vulnerabilities > CVE-2010-2953 - Remote Code Execution vulnerability in Apache Couchdb 0.8.0
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Untrusted search path vulnerability in a certain Debian GNU/Linux patch for the couchdb script in CouchDB 0.8.0 allows local users to gain privileges via a crafted shared library in the current working directory. Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
NASL family Fedora Local Security Checks NASL id FEDORA_2010-13640.NASL description Despite the fact that this is a security-related fix I would like to test these packages for a while because of possible API incompatibilities (version upgrade). Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-01 modified 2020-06-02 plugin id 49293 published 2010-09-21 reporter This script is Copyright (C) 2010-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/49293 title Fedora 13 : couchdb-0.11.2-2.fc13 (2010-13640) NASL family Debian Local Security Checks NASL id DEBIAN_DSA-2107.NASL description Dan Rosenberg discovered that in couchdb, a distributed, fault-tolerant and schema-free document-oriented database, an insecure library search path is used. A local attacker could execute arbitrary code by first dumping a maliciously crafted shared library in some directory, and then having an administrator run couchdb from this same directory. last seen 2020-06-01 modified 2020-06-02 plugin id 49184 published 2010-09-12 reporter This script is Copyright (C) 2010-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/49184 title Debian DSA-2107-1 : couchdb - untrusted search path NASL family Fedora Local Security Checks NASL id FEDORA_2010-13665.NASL description Despite the fact that this is a security-related fix I would like to test these packages for a while because of possible API incompatibilities (version upgrade). Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-01 modified 2020-06-02 plugin id 49294 published 2010-09-21 reporter This script is Copyright (C) 2010-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/49294 title Fedora 12 : couchdb-0.11.2-2.fc12 (2010-13665)
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=594412
- http://secunia.com/advisories/41383
- http://www.debian.org/security/2010/dsa-2107
- http://www.nth-dimension.org.uk/blog.php?id=87
- http://www.openwall.com/lists/oss-security/2010/08/25/7
- http://www.openwall.com/lists/oss-security/2010/08/26/1
- http://www.openwall.com/lists/oss-security/2010/08/26/5
- http://www.openwall.com/lists/oss-security/2010/08/29/4
- http://www.securityfocus.com/bid/42758
- http://www.vupen.com/english/advisories/2010/2341