Test ID:	1.3.6.1.4.1.25623.1.0.61513
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-636-1 (postfix)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to postfix announced via advisory USN-636-1. A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 7.04 Ubuntu 7.10 Ubuntu 8.04 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. Details follow: Sebastian Krahmer discovered that Postfix was not correctly handling mailbox ownership when dealing with Linux's implementation of hardlinking to symlinks. In certain mail spool configurations, a local attacker could exploit this to append data to arbitrary files as the root user. The default Ubuntu configuration was not vulnerable. Solution: The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: postfix 2.2.10-1ubuntu0.2 Ubuntu 7.04: postfix 2.3.8-2ubuntu0.2 Ubuntu 7.10: postfix 2.4.5-3ubuntu1.2 Ubuntu 8.04 LTS: postfix 2.5.1-2ubuntu1.1 In general, a standard system upgrade is sufficient to effect the necessary changes. http://www.securityspace.com/smysecure/catid.html?in=USN-636-1 Risk factor : High CVSS Score: 6.2
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2008-2936 1020700 http://www.securitytracker.com/id?1020700 20080814 Postfix local privilege escalation via hardlinked symlinks http://www.securityfocus.com/archive/1/495474/100/0/threaded 20080821 rPSA-2008-0259-1 postfix http://www.securityfocus.com/archive/1/495632/100/0/threaded 20080831 PoCfix (PoC for Postfix local root vuln - CVE-2008-2936) http://www.securityfocus.com/archive/1/495882/100/0/threaded 30691 http://www.securityfocus.com/bid/30691 31469 http://secunia.com/advisories/31469 31474 http://secunia.com/advisories/31474 31477 http://secunia.com/advisories/31477 31485 http://secunia.com/advisories/31485 31500 http://secunia.com/advisories/31500 31530 http://secunia.com/advisories/31530 32231 http://secunia.com/advisories/32231 4160 http://securityreason.com/securityalert/4160 6337 https://www.exploit-db.com/exploits/6337 ADV-2008-2385 http://www.vupen.com/english/advisories/2008/2385 DSA-1629 http://www.debian.org/security/2008/dsa-1629 FEDORA-2008-8593 https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00287.html FEDORA-2008-8595 https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00271.html GLSA-200808-12 http://security.gentoo.org/glsa/glsa-200808-12.xml MDVSA-2008:171 http://www.mandriva.com/security/advisories?name=MDVSA-2008:171 RHSA-2008:0839 http://www.redhat.com/support/errata/RHSA-2008-0839.html SUSE-SA:2008:040 http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00002.html USN-636-1 https://usn.ubuntu.com/636-1/ VU#938323 http://www.kb.cert.org/vuls/id/938323 [postfix-announce] 20080814 Postfix local privilege escalation via hardlinked symlinks http://article.gmane.org/gmane.mail.postfix.announce/110 ftp://ftp.porcupine.org/mirrors/postfix-release/experimental/postfix-2.6-20080814.HISTORY ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.3.15.HISTORY ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.4.8.HISTORY ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-2.5.4.HISTORY http://wiki.rpath.com/Advisories:rPSA-2008-0259 https://issues.rpath.com/browse/RPL-2689 oval:org.mitre.oval:def:10033 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10033 postfix-symlink-code-execution(44460) https://exchange.xforce.ibmcloud.com/vulnerabilities/44460
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.