• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Debian man-db Executable Overwrite Vulnerability

man-db is the Debian utility used to display on-line help files.

Affected versions of this utility improperly set write permissions in manual page directories. The settings allow the invoking 'man' user to overwrite the mandb binary itself, potentially replacing it with malicious code.

Since mandb assumes the privilege level of the user running it, the possibility of a user replacing it with a hostile binary prior to its execution by a privileged user (including root) has serious security implications for the vulnerable host.