• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Etnus TotalView Insecure UID/GID Privilege Escalation Vulnerability

TotalView is a debugger for programs written in the C, C++, and Fortran. It is maintained by Etnus and is available for a number of Linux and Unix variants.

TotalView, when installed, creates some files/directories with write permissions for UID 5039/GID 59. Normally, these files and directories would be created with a UID/GID of root. A local attacker who has access to an account with UID 5039 or GID 59 may be able to backdoor the affected files, which will result in an elevation of privleges when affected files are executed through TotalView by the root user.

This vulnerability has been reported for version 5.0.0-4 on the Linux platform. Other versions/platforms may also be affected.