FCheck Local Command Execution Vulnerability

Fcheck is a perl-based file integrity checker which makes use of external programs (such as MD5) to run specific tests on the structure and contents of datafiles.

Vulnerable versions of FCheck make use of an insecurely-structured call to open() which fails to properly filter user-supplied input for shell metacharacters and shell commands.

A file whose name contains these characters may be placed in a location which is monitored by FCheck. If an attacker creates a file with malicious commands embedded within its name.

When passed to the shell for execution, these commands will be executed with the privilege level of the fcheck uid.


 

Privacy Statement
Copyright 2010, SecurityFocus