BugTraq
SuSE Linux K-Menu YAST Control Center Priviledge Escalation Vulnerability Aug 06 2004 02:45AM
Jordan Pilat (cacophony syncreate org) (2 replies)
Re: SuSE Linux K-Menu YAST Control Center Priviledge Escalation Vulnerability Aug 09 2004 09:12AM
Radoslav DejanoviÄ? (radoslav dejanovic opsus hr) (1 replies)
On Friday 06 August 2004 04:45, Jordan Pilat wrote:
> 'Menus' tab of the K menu panel preferences),
> however, one can not only access, but make changes to
> the options in the YAST control center without having
> to authenticate as root.

Just tried it, it seems that it allows you just to make changes that are
allowed to unprivileged user; modules that require authentication will
fail at some point (writing to /etc, installing or removing software,
enabling/disabling services...). I have tested online update, add/remove
software, Samba and firewall and they all failed. It does pose some risk,
however, for it might allow unprivileged user to take a look at some data
that should be hidden from the user (for example, you can look at firewall
settings but can't make changes).

On the other hand, you can start yast from console with -firewall switch
and have a peek at the settings (still can't make changes), so this isn't
KDE fault but flaw in yast itself. It would be wise to add some paranoia
to yast so it won't show sensitive data to unprivileged user.

--
Radoslav DejanoviÄ?
Operacijski sustavi d.o.o.
http://www.opsus.hr

[ reply ]
Re: SuSE Linux K-Menu YAST Control Center Priviledge Escalation Vulnerability Aug 09 2004 06:13PM
Matthias Leisi (matthias astrum ch)
Re: SuSE Linux K-Menu YAST Control Center Priviledge Escalation Vulnerability Aug 07 2004 08:31AM
Stefan Seifert (nine detonation org)


 

Privacy Statement
Copyright 2010, SecurityFocus