NVD Vulnerability Detail

CVE-2012-3537

Summary	The Crowbar Ohai plugin (chef/cookbooks/ohai/files/default/plugins/crowbar.rb) in the Deployer Barclamp in Crowbar, possibly 1.4 and earlier, allows local users to execute arbitrary shell commands via vectors related to "insecure handling of tmp files" and predictable file names.
Publication Date	Sept. 6, 2012, 8:55 a.m.
Registration Date	Jan. 28, 2021, 3 p.m.
Last Update	Nov. 21, 2024, 10:41 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:dell:crowbar::::::::			1.4

Related information, measures and tools

No	URL	タグ
1	http://osvdb.org/84955
2	http://osvdb.org/84955
3	http://secunia.com/advisories/50442	Vendor Advisory
4	http://secunia.com/advisories/50442	Vendor Advisory
5	http://www.openwall.com/lists/oss-security/2012/08/27/5
6	http://www.openwall.com/lists/oss-security/2012/08/27/5
7	http://www.openwall.com/lists/oss-security/2012/08/27/7
8	http://www.openwall.com/lists/oss-security/2012/08/27/7
9	http://www.securityfocus.com/bid/55240
10	http://www.securityfocus.com/bid/55240
11	https://bugzilla.novell.com/show_bug.cgi?id=774967
12	https://bugzilla.novell.com/show_bug.cgi?id=774967
13	https://exchange.xforce.ibmcloud.com/vulnerabilities/78041
14	https://exchange.xforce.ibmcloud.com/vulnerabilities/78041
15	https://github.com/dellcloudedge/barclamp-deployer/pull/57
16	https://github.com/dellcloudedge/barclamp-deployer/pull/57
17	https://github.com/SUSE-Cloud/barclamp-deployer/commit/5ea8d4ddaa4cb1ce834d36889f0fe7ac0d617bc8	Exploit Patch
18	https://github.com/SUSE-Cloud/barclamp-deployer/commit/5ea8d4ddaa4cb1ce834d36889f0fe7ac0d617bc8	Exploit Patch
19	https://github.com/SUSE-Cloud/barclamp-deployer/commit/b6454268a067fc77ff5de82057b5b53b3cc38b87	Exploit Patch
20	https://github.com/SUSE-Cloud/barclamp-deployer/commit/b6454268a067fc77ff5de82057b5b53b3cc38b87	Exploit Patch

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-264	認可・権限・アクセス制御	https://cwe.mitre.org/data/definitions/264.html

JVN Vulnerability Information

Crowbar の Deployer Barclamp における任意のシェルコマンドを実行される脆弱性

Title	Crowbar の Deployer Barclamp における任意のシェルコマンドを実行される脆弱性
Summary	Crowbar の Deployer Barclamp 内の Crowbar Ohai プラグイン (chef/cookbooks/ohai/files/default/plugins/crowbar.rb) には、"一時ファイルの不安定な取り扱い (insecure handling of tmp files)" 、および予測可能なファイル名に関する処理に不備があるため、任意のシェルコマンドを実行される脆弱性が存在します。
Possible impacts	ローカルユーザにより、任意のシェルコマンドを実行される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Sept. 5, 2012, midnight
Registration Date	Sept. 7, 2012, 3:48 p.m.
Last Update	Sept. 7, 2012, 3:48 p.m.

Affected System

デル

Crowbar 1.4 およびそれ以前

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2012-3537	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3537
National Vulnerability Database (NVD)
2	CVE-2012-3537	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-3537

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-264	https://jvndb.jvn.jp/ja/cwe/CWE-264.html

ベンダー情報

No	Name	URL
GitHub
1	dellcloudedge / barclamp - deployer - Pull in a SUSE fix for operations around discovering networking - security fix and some flow fixes	https://github.com/dellcloudedge/barclamp-deployer/pull/57
2	dellcloudedge / crowbar	https://github.com/dellcloudedge/crowbar
3	SUSE-Cloud / barclamp-deployer - Fix vulnerability caused by predictable pathnames for tcpdump packet …	https://github.com/SUSE-Cloud/barclamp-deployer/commit/5ea8d4ddaa4cb1ce834d36889f0fe7ac0d617bc8
4	SUSE-Cloud / barclamp-deployer - use secure state/tmp dir for crowbar ohai dir (bnc#774967)	https://github.com/SUSE-Cloud/barclamp-deployer/commit/b6454268a067fc77ff5de82057b5b53b3cc38b8

その他

No	Name	URL
関連文書
1	SUSE、OpenStackベースのプライベートクラウドソリューション「SUSE Cloud」	http://cloud.watch.impress.co.jp/docs/news/20120903_557204.html

Change Log

No	Changed Details	Date of change
0	[2012年09月07日] 掲載	Feb. 17, 2018, 10:37 a.m.