National Cyber-Alert System
Vulnerability Summary for CVE-2005-0758
Original release date:05/13/2005
Last revised:03/08/2011
Source:
US-CERT/NIST
Overview
zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.
Impact
CVSS Severity (version 2.0 incomplete approximation):
Impact Subscore:
6.4
Exploitability Subscore:
3.9
CVSS Version 2 Metrics:
Access Vector: Locally exploitable
Access Complexity: Low
Authentication: Not required to exploit
Impact Type:Provides user account access, Allows partial confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service
Official Statement from Red Hat (03/14/2007)
Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
References to Advisories, Solutions, and Tools
By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.
External Source: GENTOO
Name: GLSA-200505-05
Type: Advisory; Patch Information
External Source: XF
Name: gzip-zgrep-file-installation(20539)
External Source: VUPEN
Name: ADV-2007-2732
External Source: UBUNTU
Name: USN-158-1
External Source: BID
Name: 13582
External Source: REDHAT
Name: RHSA-2005:474
External Source: OSVDB
Name: 16371
External Source: FEDORA
Name: FLSA:158801
External Source: SECTRACK
Name: 1013928
External Source: SECUNIA
Name: 19183
External Source: SECUNIA
Name: 18100
External Source: REDHAT
Name: RHSA-2005:357
External Source: OVAL
Name: oval:org.mitre.oval:def:9797
External Source: MISC
Name: http://bugs.gentoo.org/show_bug.cgi?id=90626
Type: Advisory
External Source: SGI
Name: 20060301-01-U
External Source: SCO
Name: SCOSA-2005.58
External Source: BID
Name: 25159
External Source: OPENPKG
Name: OpenPKG-SA-2007.002
External Source: MANDRIVA
Name: MDKSA-2006:027
External Source: MANDRIVA
Name: MDKSA-2006:026
External Source: SLACKWARE
Name: SSA:2006-262
External Source: SECUNIA
Name: 26235
External Source: SECUNIA
Name: 22033
External Source: APPLE
Name: APPLE-SA-2007-07-31
External Source: CONFIRM
Name: http://docs.info.apple.com/article.html?artnum=306172
US Government Resource: oval:org.mitre.oval:def:1107
Name: oval:org.mitre.oval:def:1107
Type: Tool Signature
US Government Resource: oval:org.mitre.oval:def:1081
Name: oval:org.mitre.oval:def:1081
Type: Tool Signature
References to Check Content
Identifier:oval:org.mitre.oval:def:1081
Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5
Identifier:oval:org.mitre.oval:def:9797
Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5
Identifier:oval:org.mitre.oval:def:1107
Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5