A privilege escalation flaw was found in Amanda 3.5.1 in which the backup user can acquire root privileges. The vulnerable component is the runtar SUID program, which is a wrapper to run /usr/bin/tar with specific arguments that are controllable by the attacker. This program mishandles the arguments passed to tar binary (it expects that the argument name and value are separated with a space; however, separating them with an equals sign is also supported),
References
Configurations
History
03 Dec 2023, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Nov 2023, 03:49
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
06 Jun 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 May 2023, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2023-04-16 01:15
Updated : 2024-02-28 20:13
NVD link : CVE-2022-37705
Mitre link : CVE-2022-37705
CVE.ORG link : CVE-2022-37705
JSON object : View
Products Affected
zmanda
- amanda
CWE
CWE-88
Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')