製品・ソフトウェアに関する情報

JVN脆弱性詳細

MIT Kerberos 5 の GSS-API FTP デーモンにおけるグループのアクセス制限を回避される脆弱性

タイトル	MIT Kerberos 5 の GSS-API FTP デーモンにおけるグループのアクセス制限を回避される脆弱性
概要	MIT Kerberos 5 の GSS-API FTP デーモン内の ftpd.c は、krb5_setegid の戻り値をチェックしないため、グループのアクセス制限を回避されることで、ファイルを作成、上書き、削除、または読み込まれる脆弱性が存在します。
想定される影響	リモート認証されたユーザにより、スタンダード FTP コマンドを介して、ファイルを作成、上書き、削除、または読み込まれる可能性があります。
対策	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
公表日	2011年7月5日0:00
登録日	2011年7月20日11:17
最終更新日	2011年7月20日11:17

CVSS2.0 : 警告
スコア	6.5
ベクター	AV:N/AC:L/Au:S/C:P/I:P/A:P

影響を受けるシステム

レッドハット

Red Hat Enterprise Linux Desktop 6

Red Hat Enterprise Linux HPC Node 6

Red Hat Enterprise Linux Server 6

Red Hat Enterprise Linux Server EUS 6.1.z

Red Hat Enterprise Linux Workstation 6

MIT Kerberos

Kerberos 5 appl 1.0.1 およびそれ以前

CVE (情報セキュリティ共通脆弱性識別子)

No	名前	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2011-1526	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1526
National Vulnerability Database (NVD)
2	CVE-2011-1526	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1526

CWE (共通脆弱性タイプ一覧)

No	名前	URL
JVNDB
1	CWE-264	https://jvndb.jvn.jp/ja/cwe/CWE-264.html

ベンダー情報

No	名前	URL
MIT krb5 Security Advisory
1	MITKRB5-SA-2011-005	http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-005.txt
Red Hat Security Advisory
2	RHSA-2011:0920	https://rhn.redhat.com/errata/RHSA-2011-0920.html

その他

No	名前	URL
ISS X-Force Database
1	68398	http://xforce.iss.net/xforce/xfdb/68398
OPEN SOURCE VULNERABILITY DATABASE (OSVDB)
2	73617	http://osvdb.org/73617
Secunia Advisory
3	SA45145	http://secunia.com/advisories/45145
4	SA45157	http://secunia.com/advisories/45157
SecurityFocus
5	48571	http://www.securityfocus.com/bid/48571
SecurityTracker
6	1025744	http://www.securitytracker.com/id/1025744

変更履歴

No	変更内容	変更日
0	[2011年07月20日] 掲載	2018年2月17日10:37

NVD脆弱性情報

CVE-2011-1526

概要	ftpd.c in the GSS-API FTP daemon in MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.1 and earlier does not check the krb5_setegid return value, which allows remote authenticated users to bypass intended group access restrictions, and create, overwrite, delete, or read files, via standard FTP commands, related to missing autoconf tests in a configure script.
公表日	2011年7月12日5:55
登録日	2021年1月28日16:38
最終更新日	2024年11月21日10:26

影響を受けるソフトウェアの構成

構成1		以上	以下	より上	未満
cpe:2.3:a:mit:krb5-appl::::::::					1.0.1

構成2	以上	以下	より上	未満
cpe:2.3:o:debian:debian_linux:5.0:::::::*
cpe:2.3:o:debian:debian_linux:6.0:::::::*

構成3	以上	以下	より上	未満
cpe:2.3:o:fedoraproject:fedora:15:::::::*
cpe:2.3:o:fedoraproject:fedora:14:::::::*

構成4	以上	以下	より上	未満
cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1::::::
cpe:2.3:o:opensuse:opensuse:11.4:::::::*
cpe:2.3:o:opensuse:opensuse:11.3:::::::*
cpe:2.3:o:suse:linux_enterprise_server:10:sp2::::::
cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4::::::
cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::-::*
cpe:2.3:o:suse:linux_enterprise_server:10:sp3:::ltss:::*
cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:::-:::*
cpe:2.3:o:suse:linux_enterprise_server:10:sp4:::-:::*
cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp1::::::
cpe:2.3:o:suse:linux_enterprise_server:11:sp1:::-:vmware::

関連情報、対策とツール

No	URL	タグ
1	http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062681.html	Third Party Advisory
2	http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062699.html	Third Party Advisory
3	http://lists.opensuse.org/opensuse-security-announce/2011-10/msg00009.html	Mailing List Third Party Advisory
4	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00002.html	Mailing List Third Party Advisory
5	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00004.html	Mailing List Third Party Advisory
6	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00005.html	Mailing List Third Party Advisory
7	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00010.html	Mailing List Third Party Advisory
8	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00011.html	Mailing List Third Party Advisory
9	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00014.html	Mailing List Third Party Advisory
10	http://secunia.com/advisories/45145	Third Party Advisory
11	http://secunia.com/advisories/45157	Third Party Advisory
12	http://secunia.com/advisories/48101	Third Party Advisory
13	http://securityreason.com/securityalert/8301	Third Party Advisory
14	http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-005.txt	Patch Vendor Advisory
15	http://www.debian.org/security/2011/dsa-2283	Third Party Advisory
16	http://www.mandriva.com/security/advisories?name=MDVSA-2011:117	Third Party Advisory
17	http://www.osvdb.org/73617	Broken Link
18	http://www.redhat.com/support/errata/RHSA-2011-0920.html	Third Party Advisory
19	http://www.securityfocus.com/archive/1/518733/100/0/threaded	Third Party Advisory VDB Entry
20	http://www.securityfocus.com/bid/48571	Patch Third Party Advisory VDB Entry
21	https://bugzilla.redhat.com/show_bug.cgi?id=711419	Issue Tracking Third Party Advisory
22	https://exchange.xforce.ibmcloud.com/vulnerabilities/68398	Third Party Advisory VDB Entry
23	http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062681.html	Third Party Advisory
24	https://exchange.xforce.ibmcloud.com/vulnerabilities/68398	Third Party Advisory VDB Entry
25	https://bugzilla.redhat.com/show_bug.cgi?id=711419	Issue Tracking Third Party Advisory
26	http://www.securityfocus.com/bid/48571	Patch Third Party Advisory VDB Entry
27	http://www.securityfocus.com/archive/1/518733/100/0/threaded	Third Party Advisory VDB Entry
28	http://www.redhat.com/support/errata/RHSA-2011-0920.html	Third Party Advisory
29	http://www.osvdb.org/73617	Broken Link
30	http://www.mandriva.com/security/advisories?name=MDVSA-2011:117	Third Party Advisory
31	http://www.debian.org/security/2011/dsa-2283	Third Party Advisory
32	http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-005.txt	Patch Vendor Advisory
33	http://securityreason.com/securityalert/8301	Third Party Advisory
34	http://secunia.com/advisories/48101	Third Party Advisory
35	http://secunia.com/advisories/45157	Third Party Advisory
36	http://secunia.com/advisories/45145	Third Party Advisory
37	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00014.html	Mailing List Third Party Advisory
38	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00011.html	Mailing List Third Party Advisory
39	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00010.html	Mailing List Third Party Advisory
40	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00005.html	Mailing List Third Party Advisory
41	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00004.html	Mailing List Third Party Advisory
42	http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00002.html	Mailing List Third Party Advisory
43	http://lists.opensuse.org/opensuse-security-announce/2011-10/msg00009.html	Mailing List Third Party Advisory
44	http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062699.html	Third Party Advisory

共通脆弱性一覧

No	CWE	名前	URL
1	CWE-269	不適切な権限管理	https://cwe.mitre.org/data/definitions/269.html

構成4	以上	以下	より上	未満
cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1::::::
cpe:2.3:o:opensuse:opensuse:11.4:::::::*
cpe:2.3:o:opensuse:opensuse:11.3:::::::*
cpe:2.3:o:suse:linux_enterprise_server:10:sp2::::::
cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4::::::
cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::-::*
cpe:2.3:o:suse:linux_enterprise_server:10:sp3:::ltss:::*
cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:::-:::*
cpe:2.3:o:suse:linux_enterprise_server:10:sp4:::-:::*
cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp1::::::
cpe:2.3:o:suse:linux_enterprise_server:11:sp1:::-:vmware::