Common Desktop Environment (CDE) dtspcd Buffer OverflowRisk: HIGH Description: Symantec Corporation advises its customers to be aware of a remote root-access buffer overflow vulnerability in the Common Desktop Environment's (CDE's) desktop subprocess control service(dtspc). A remote intruder can cause arbitrary code to be run with root-level privileges on the targeted system, potentially gaining root access to the system. The CDE is an integrated graphical user interface that runs on Unix and Linux operating systems. "dtspcd" is a network daemon that accepts requests from clients to execute commands and launch applications remotely. On systems running CDE, dtspcd is spawned by the Internet services daemon (typically inetd or xinetd) in response to a CDE client request. The dtspcd is typically configured to run on port 6112/tcp with root privileges. dtspcd makes a function call to a shared library that contains a buffer overflow condition in the client connection routine. The buffer overflow can be exploited by a specially crafted CDE client request allowing a remote attacker to gain administrative privileges on the affected host. Although this vulnerability can potentially affect any operating system using CDE functionality, there is information that an exploit has been specifically developed for and is being actively used against SunOS 5.51 through 8, both SPARC and x86 releases. If your system(s) is/are not running the CDE Subprocess Control Service, you are not vulnerable to this issue. To determine if you have CDE installed and enabled, check for the following entries.
Platform(s) Affected: Multiple Affected Components: click here Safeguards: click here References: CVE Security Focus.com Security Tracker Sun Microsystems CERT
|