Vigil@nce - Abrt: privilege escalation via pipe
June 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
A local attacker can use the Abrt feature of the Linux kernel, in
order to escalate his privileges.
– Impacted products: Linux
– Severity: 2/4
– Creation date: 15/04/2015
DESCRIPTION OF THE VULNERABILITY
The Linux system uses the Abrt tool (Automatic Bug Reporting Tool)
to inform developers about errors.
However, if the first character of kern.core_pattern is a pipe
(|), the kernel calls Abrt in a context which is controllable by
the user.
A local attacker can therefore use the Abrt feature of the Linux
system, in order to escalate his privileges.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Abrt-privilege-escalation-via-pipe-16626