漏洞信息详情
man工具-H选项本地缓冲区溢出漏洞
- CNNVD编号:CNNVD-200704-157
- 危害等级: 中危
![图片[1]-man工具-H选项本地缓冲区溢出漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-07-05/30f462579bec41fc25e0b1d57503e6d6.png)
- CVE编号:
CVE-2006-4250
- 漏洞类型:
缓冲区溢出
- 发布时间:
2007-04-10
- 威胁类型:
本地
- 更新时间:
2007-08-02
- 厂 商:
debian - 漏洞来源:
Jochen Voß -
漏洞简介
man-db是一个在线用户手册数据库,允许使用man命令实现对标准Unix文档系统的访问。
man在处理特定的命令行选项时存在缓冲区溢出漏洞,本地攻击者可能利用此漏洞提升自己的权限。
如果man工具使用的BROWSER环境变量中包含有\”\\%s\”扩展的话,就可能触发缓冲区溢出,导致以提升的权限执行任意指令。
漏洞公告
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
厂商补丁:
Debian已经为此发布了一个安全公告(DSA-1278-1)以及相应补丁:
DSA-1278-1:New man-db packages fix arbitrary code execution
链接:
http://www.debian.org/security/2007/dsa-1278” target=”_blank”>
http://www.debian.org/security/2007/dsa-1278
补丁下载:
Source archives:
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2.orig.tar.gz” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2.orig.tar.gz
Size/MD5 checksum: 730134 15855f899a76aa302c83ffec81526ab4
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1.dsc” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1.dsc
Size/MD5 checksum: 673 add0d09882262adb0cbbde6845af0fbb
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1.diff.gz” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1.diff.gz
Size/MD5 checksum: 104832 c5befcaee1865b8582d7bbe8ac21f537
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_alpha.deb” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_alpha.deb
Size/MD5 checksum: 641194 92131ea27cf1f17fcdaaea36accfa930
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_amd64.deb” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_amd64.deb
Size/MD5 checksum: 607660 464ca88aca62d8cd8ee84072993ce0f7
arm architecture (ARM)
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_arm.deb” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_arm.deb
Size/MD5 checksum: 559372 1d5563046ce831b2b7088caa044694de
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_hppa.deb” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_hppa.deb
Size/MD5 checksum: 609530 efa1144900b1ee014dd93eb5fb1bf223
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_i386.deb” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_i386.deb
Size/MD5 checksum: 579774 feb44785cde0c8f64cd22f35aa674ab8
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_ia64.deb” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_ia64.deb
Size/MD5 checksum: 687208 1400e1e708ec327de4517557de51eca3
m68k architecture (Motorola Mc680x0)
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_m68k.deb” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_m68k.deb
Size/MD5 checksum: 544688 d9bd8753aeaf7ceaa7ff29903085ca33
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_mips.deb” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_mips.deb
Size/MD5 checksum: 609644 b8cc5d9b03e70a2bf671983a31d858ba
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_mipsel.deb” target=”_blank”>
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_mipsel.deb
Size/MD5 checksum: 611036 6e3cf522a309f851111ce579d1985c83
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/m/man-db/man-db_2.4.2-21sarge1_powerpc.deb” target=”_blank”>
参考网址
来源: VUPEN
名称: ADV-2007-1295
链接:http://www.frsirt.com/english/advisories/2007/1295
来源: VUPEN
名称: ADV-2007-1294
链接:http://www.frsirt.com/english/advisories/2007/1294
来源: DEBIAN
名称: DSA-1278
链接:http://www.debian.org/security/2007/dsa-1278
来源: XF
名称: mandb-hflag-bo(33508)
链接:http://xforce.iss.net/xforce/xfdb/33508
来源: BID
名称: 23355
链接:http://www.securityfocus.com/bid/23355
来源: SUSE
名称: SUSE-SR:2007:007
链接:http://www.novell.com/linux/security/advisories/2007_007_suse.html
来源: SECUNIA
名称: 24995
链接:http://secunia.com/advisories/24995
来源: SECUNIA
名称: 24828
链接:http://secunia.com/advisories/24828
来源: SECUNIA
名称: 24801
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
