FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2004-0884

This CVE name corresponds to:

Entered Topic
2004-10-08 cyrus-sasl -- dynamic library loading and set-user-ID applications

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2004-0884 at cve.mitre.org

Details

Type Candidate
Name CVE-2004-0884
Phase Assigned(20040922)

Description

The (1) libsasl and (2) libsasl2 libraries in Cyrus-SASL 2.1.18 and earlier trust the SASL_PATH environment variable to find all available SASL plug-ins, which allows local users to execute arbitrary code by modifying the SASL_PATH to point to malicious programs.

References

Source Reference
APPLE APPLE-SA-2005-03-21
DEBIAN DSA-563
DEBIAN DSA-568
FEDORA FLSA:2137
GENTOO GLSA-200410-05
MANDRAKE MDKSA-2004:106
REDHAT RHSA-2004:546
TRUSTIX 2004-0053
BUGTRAQ 20050128 [OpenPKG-SA-2005.004] OpenPKG Security Advisory (sasl)
CONFIRM http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=134657
CIAC P-003
BID 11347
OVAL oval:org.mitre.oval:def:11678
XF cyrus-sasl-saslpath(17643)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.