CVE-2004-0564
First published: Fri Nov 19 2004(Updated: )
Roaring Penguin pppoe (rp-ppoe), if installed or configured to run setuid root contrary to its design, allows local users to overwrite arbitrary files. NOTE: the developer has publicly disputed the claim that this is a vulnerability because pppoe "is NOT designed to run setuid-root." Therefore this identifier applies *only* to those configurations and installations under which pppoe is run setuid root despite the developer's warnings.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Roaring Penguin PPPoE | =3.0 | |
| Roaring Penguin PPPoE | =3.3 | |
| Roaring Penguin PPPoE | =3.5 | |
| Debian | =3.0 | |
| Debian | =3.0 | |
| Debian | =3.0 | |
| Debian | =3.0 | |
| Debian | =3.0 | |
| Debian | =3.0 | |
| Debian | =3.0 | |
| Debian | =3.0 | |
| Debian | =3.0 | |
| Debian | =3.0 | |
| Debian | =3.0 | |
| Debian | =3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.debian.org/security/2004/dsa-557
- http://www.securityfocus.com/bid/11315
- http://www.fedoralegacy.org/updates/FC1/2005-11-14-FLSA_2005_152794__Updated_rp_pppoe_package_fixes_security_issue.html
- http://marc.info/?l=bugtraq&m=110247119200510&w=2
- http://marc.info/?l=bugtraq&m=110253341209450&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17576
Frequently Asked Questions
What is the severity of CVE-2004-0564?
CVE-2004-0564 is considered to have a moderate severity as it allows local users to overwrite arbitrary files when pppoe is improperly set to run with setuid root.
How do I fix CVE-2004-0564?
To fix CVE-2004-0564, ensure that the Roaring Penguin pppoe is not configured to run with setuid root permissions.
Which versions of Roaring Penguin pppoe are affected by CVE-2004-0564?
CVE-2004-0564 affects Roaring Penguin pppoe versions 3.0, 3.3, and 3.5.
Can local users exploit CVE-2004-0564?
Yes, local users can exploit CVE-2004-0564 if the pppoe is improperly set up with setuid root, allowing them to overwrite files.
What is the main issue with CVE-2004-0564?
The main issue with CVE-2004-0564 is that it stems from a design flaw where pppoe is allowed to run with unsafe permissions contrary to its intended use.
- agent/references
- agent/type
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/severity
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/roaring penguin
- canonical/roaring penguin pppoe
- version/roaring penguin pppoe/3.5
- version/roaring penguin pppoe/3.0
- version/roaring penguin pppoe/3.3
- vendor/debian
- canonical/debian gnu/linux
- version/debian gnu/linux/3.0