漏洞信息详情
Roaring Penguin PPPoE覆盖任意文件漏洞
- CNNVD编号:CNNVD-200412-113
- 危害等级: 低危
![图片[1]-Roaring Penguin PPPoE覆盖任意文件漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-09-02/fa6998ac850c38cb90c47a02e5a8652c.png)
- CVE编号:
CVE-2004-0564
- 漏洞类型:
设计错误
- 发布时间:
2004-12-23
- 威胁类型:
本地
- 更新时间:
2005-10-20
- 厂 商:
roaring_penguin - 漏洞来源:
Discovery of this … -
漏洞简介
安装或配置Roaring Penguin pppoe (rp-ppoe)时违反设计运行设置用户标识符根目录产生漏洞。本地用户可以利用该漏洞覆盖任意文件。
漏洞公告
Debian Linux has released an advisory (DSA 557-1) along with fixes dealing with this issue. Please see the referenced advisory for more information.
MandrakeSoft has issued an advisory (MDKSA-2004:145) along with patched upgrades. Please see the referenced advisory for more information.
Redhat has released an advisory (FLSA:152794 along with fixes dealing with this issue. Please see the referenced advisory for more information.
Roaring Penguin Software PPPoE 3.3
-
Debian pppoe_3.3-1.2_alpha.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/r/rp-pppoe/pppoe_3.3-1.2_
alpha.deb -
Debian pppoe_3.3-1.2_arm.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/r/rp-pppoe/pppoe_3.3-1.2_
arm.deb -
Debian pppoe_3.3-1.2_hppa.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/r/rp-pppoe/pppoe_3.3-1.2_
hppa.deb -
Debian pppoe_3.3-1.2_i386.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/r/rp-pppoe/pppoe_3.3-1.2_
i386.deb -
Debian pppoe_3.3-1.2_ia64.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/r/rp-pppoe/pppoe_3.3-1.2_
ia64.deb -
Debian pppoe_3.3-1.2_m68k.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/r/rp-pppoe/pppoe_3.3-1.2_
m68k.deb -
Debian pppoe_3.3-1.2_mips.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/r/rp-pppoe/pppoe_3.3-1.2_
mips.deb -
Debian pppoe_3.3-1.2_mipsel.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/r/rp-pppoe/pppoe_3.3-1.2_
mipsel.deb -
Debian pppoe_3.3-1.2_powerpc.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/r/rp-pppoe/pppoe_3.3-1.2_
powerpc.deb -
Debian pppoe_3.3-1.2_s390.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/r/rp-pppoe/pppoe_3.3-1.2_
s390.deb -
Debian pppoe_3.3-1.2_sparc.debDebian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/r/rp-pppoe/pppoe_3.3-1.2_
sparc.deb -
Mandrake rp-pppoe-3.3-2.1.M82mdk.i586.rpmMandrake Multi Network Firewall 8.2
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-gui-3.3-2.1.M82mdk.i586.rpmMandrake Multi Network Firewall 8.2
http://www.mandrakesecure.net/en/ftp.php
Roaring Penguin Software PPPoE 3.5
-
Mandrake rp-pppoe-3.5-1.1.C21mdk.i586.rpmMandrake Corporate Server 2.1
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-3.5-1.1.C21mdk.x86_64.rpmMandrake Corporate Server 2.1/x86_64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-3.5-3.1.100mdk.amd64.rpmMandrake Linux 10.0/AMD64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-3.5-3.1.100mdk.i586.rpmMandrake Linux 10.0
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-3.5-3.1.92mdk.amd64.rpmMandrake Linux 9.2/AMD64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-3.5-3.1.92mdk.i586.rpmMandrake Linux 9.2
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-3.5-4.1.101mdk.i586.rpmMandrake Linux 10.1
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-3.5-4.1.101mdk.x86_64.rpmMandrake Linux 10.1/x86_64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-gui-3.5-1.1.C21mdk.i586.rpmMandrake Corporate Server 2.1
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-gui-3.5-1.1.C21mdk.x86_64.rpmMandrake Corporate Server 2.1/x86_64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-gui-3.5-3.1.100mdk.amd64.rpmMandrake Linux 10.0/AMD64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-gui-3.5-3.1.100mdk.i586.rpmMandrake Linux 10.0
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-gui-3.5-3.1.92mdk.amd64.rpmMandrake Linux 9.2/AMD64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-gui-3.5-3.1.92mdk.i586.rpmMandrake Linux 9.2
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-gui-3.5-4.1.101mdk.i586.rpmMandrake Linux 10.1
http://www.mandrakesecure.net/en/ftp.php -
Mandrake rp-pppoe-gui-3.5-4.1.101mdk.x86_64.rpmMandrake Linux 10.1/x86_64
http://www.mandrakesecure.net/en/ftp.php
参考网址
来源: XF
名称: pppoe-file-overwrite(17576)
链接:http://xforce.iss.net/xforce/xfdb/17576
来源: BID
名称: 11315
链接:http://www.securityfocus.com/bid/11315
来源: DEBIAN
名称: DSA-557
链接:http://www.debian.org/security/2004/dsa-557
来源: MANDRAKE
名称: MDKSA-2004:145
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=110247119200510&w=2
来源: FEDORA
名称: FLSA:152794
链接:http://www.fedoralegacy.org/updates/FC1/2005-11-14-FLSA_2005_152794__Updated_rp_pppoe_package_fixes_security_issue.html
来源: BUGTRAQ
名称: 20041208 Re: MDKSA-2004:145 – Updated rp-pppoe packages fix vulnerability
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=110253341209450&w=2
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
