Unix Shell Redirection Race Condition Vulnerability

Bugtraq ID: 2006
Class: Race Condition Error
CVE: CVE-2000-1134
Remote: No
Local: Yes
Published: Jan 02 2000 12:00AM
Updated: Jul 11 2009 03:56AM
Credit: This issue for bash and ksh was discovered and posted to BugTraq by Paul Szabo <psz@maths.usyd.edu.au>. The tcsh variation was posted to BugTraq by proton <proton@energymech.net>. This vulnerability was originally discovered by Gordon Irlam.
Vulnerable: Wirex Immunix OS 6.2
tcsh tcsh 6.9 .00
tcsh tcsh 6.8 .00
tcsh tcsh 6.7.2
Sun Solaris 2.5.1 _x86
Sun Solaris 2.5.1
Sun Solaris 8_x86
Sun Solaris 8_sparc
Sun Solaris 7.0_x86
Sun Solaris 7.0
Sun Solaris 2.6_x86
Sun Solaris 2.6
Sun Solaris 2.5_x86
Sun Solaris 2.5
Sun Cobalt RaQ4 RAID 3100R
Sun Cobalt RaQ4 Japanese RAID 3100R-ja
Sun Cobalt RaQ4 3001R
Sun Cobalt RaQ XTR Japanese 3500R-ja
Sun Cobalt RaQ XTR 3500R
Sun Cobalt RaQ XTR
Sun Cobalt RaQ 4
Sun Cobalt Qube3 w/Caching 4010WG
Sun Cobalt Qube3 w/ Caching and RAID 4100WG
Sun Cobalt Qube3 Japanese w/Caching 4010WGJ
Sun Cobalt Qube3 Japanese w/ Caching and RAID 4100WGJ
Sun Cobalt Qube3 Japanese 4000WGJ
Sun Cobalt Qube3 4000WG
Sun Cobalt Qube 3
SGI IRIX 6.5.13 m
SGI IRIX 6.5.13 f
SGI IRIX 6.5.13
SGI IRIX 6.5.12 m
SGI IRIX 6.5.12 f
SGI IRIX 6.5.12
SGI IRIX 6.5.11 m
SGI IRIX 6.5.11 f
SGI IRIX 6.5.11
SGI IRIX 6.5.10 m
SGI IRIX 6.5.10 f
SGI IRIX 6.5.10
SGI IRIX 6.5.9
SGI IRIX 6.5.8
SGI IRIX 6.5.7
SGI IRIX 6.5.6
SGI IRIX 6.5.5
SGI IRIX 6.5.4
SGI IRIX 6.5.3
SGI IRIX 6.5.2
SGI IRIX 6.5.1
SGI IRIX 6.5
SCO Open Server 5.0.6 a
SCO Open Server 5.0.6
SCO Open Server 5.0.5
SCO Open Server 5.0.4
SCO Open Server 5.0.3
SCO Open Server 5.0.2
SCO Open Server 5.0.1
SCO Open Server 5.0
SCO eServer 2.3
SCO eDesktop 2.4
S.u.S.E. Linux 7.0
RedHat Linux 6.2 E sparc
RedHat Linux 6.2 E i386
RedHat Linux 6.2 E alpha
RedHat Linux 6.2 sparc
RedHat Linux 6.2 i386
RedHat Linux 6.2 alpha
RedHat Linux 6.1 sparc
RedHat Linux 6.1 i386
RedHat Linux 6.1 alpha
RedHat Linux 6.0 sparc
RedHat Linux 6.0 alpha
RedHat Linux 6.0
RedHat Linux 5.2 sparc
RedHat Linux 5.2 i386
RedHat Linux 5.2 alpha
RedHat bash-1.14.7-22.i386.rpm
+ Red Hat Linux 6.2
RedHat bash-1.14.7-16.i386.rpm
+ RedHat Linux 6.0
RedHat bash-1.14.7-13.i386.rpm
+ RedHat Linux 5.2
Netscape Communicator 6.01a
- Sun Solaris 8_sparc
- Sun Solaris 7.0
Mandriva Linux Mandrake 7.2
Mandriva Linux Mandrake 7.1
Mandriva Linux Mandrake 7.0
Mandriva Linux Mandrake 6.1
Mandriva Linux Mandrake 6.0
HP HP-UX 11.11
HP HP-UX 11.0 4
HP HP-UX 11.0
HP HP-UX 10.20
HP HP-UX 9.0
FreeBSD FreeBSD 5.0
FreeBSD FreeBSD 4.2
FreeBSD FreeBSD 3.5.1
Digital (Compaq) TRU64/DIGITAL UNIX 5.0
Conectiva Linux 5.1
Conectiva Linux 5.0
Conectiva Linux 4.2
Conectiva Linux 4.1
Conectiva Linux 4.0 es
Conectiva Linux 4.0
Conectiva Linux graficas
Conectiva Linux ecommerce
Compaq Tru64 5.1 a
Compaq Tru64 5.1
Compaq Tru64 5.0 a
Compaq Tru64 5.0
Compaq Tru64 4.0 g
Compaq Tru64 4.0 f
Compaq Tru64 4.0 d
Caldera OpenLinux Desktop 2.3
Apple Mac OS X 10.0.4
Apple Mac OS X 10.0.3
Apple Mac OS X 10.0.2
Apple Mac OS X 10.0.1
Apple Mac OS X 10.0
Not Vulnerable: Sun Solaris 8_sparc
SGI IRIX 6.5.14 m
SGI IRIX 6.5.14 f
SGI IRIX 6.5.14
IBM AIX 4.3.3
HP HP-UX 11.0
Apple Mac OS X 10.1


 

Privacy Statement
Copyright 2010, SecurityFocus