CVE-2013-6876 — HIGH (7.8) — White Hats Nepal

Q: How severe is CVE-2013-6876?

CVE-2013-6876 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2013-6876?

Check the references section above for vendor advisories and patch information. Affected products include: S3Dvt Project S3Dvt.

Vulnerability Description

The (1) pty_init_terminal and (2) pipe_init_terminal functions in main.c in s3dvt 0.2.2 and earlier allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: this vulnerability was fixed with commit ad732f00b411b092c66a04c359da0f16ec3b387, but the version number was not changed.

CVSS Score

7.8

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
S3Dvt Project	S3Dvt	<= 0.2.2

Related Weaknesses (CWE)

CWE-264

References

http://hmarco.org/bugs/s3dvt_0.2.2-root-shell.htmlThird Party Advisory
http://packetstormsecurity.com/files/126887/s3dvt-Privilege-Escalation.htmlThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2014/Jun/10Mailing ListThird Party Advisory
http://www.openwall.com/lists/oss-security/2014/06/03/11Mailing ListThird Party Advisory
http://www.securityfocus.com/archive/1/532258/100/0/threaded
http://www.securityfocus.com/archive/1/532276/100/0/threaded
http://www.securityfocus.com/bid/67789Third Party AdvisoryVDB Entry
http://hmarco.org/bugs/s3dvt_0.2.2-root-shell.htmlThird Party Advisory
http://packetstormsecurity.com/files/126887/s3dvt-Privilege-Escalation.htmlThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2014/Jun/10Mailing ListThird Party Advisory
http://www.openwall.com/lists/oss-security/2014/06/03/11Mailing ListThird Party Advisory
http://www.securityfocus.com/archive/1/532258/100/0/threaded
http://www.securityfocus.com/archive/1/532276/100/0/threaded
http://www.securityfocus.com/bid/67789Third Party AdvisoryVDB Entry

FAQ

What is CVE-2013-6876?

CVE-2013-6876 is a vulnerability with a CVSS score of 7.8 (HIGH). The (1) pty_init_terminal and (2) pipe_init_terminal functions in main.c in s3dvt 0.2.2 and earlier allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and ear...

How severe is CVE-2013-6876?

CVE-2013-6876 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-6876?

Check the references section above for vendor advisories and patch information. Affected products include: S3Dvt Project S3Dvt.