RedHat Linux Korean Installation Insecure Default UMask Vulnerability

RedHat Linux is the UNIX clone operating system distributed by Red Hat, Incorporated. It is freely available, and open source.

A problem with the operating system has been discovered that under some circumstances could lead to local users gaining unauthorized privileges. The problem is in the implementation of umask with some installations. The Korean installation of RedHat Linux sets a default umask of 000, meaning all files created on the system are mode 777 by default.

This makes it possible for a local user to gain elevated privileges, and potentially administrative access.

HP Secure OS software for Linux Release 1.0 is also affected by this issue, although a Korean version is not supported by Hewlett Packard, so there are no patches available.


 

Privacy Statement
Copyright 2010, SecurityFocus