![]() ![]() ![]() "The most likely outcome is for the attacker to plant a shell in the web root to gain remote code execution, although other avenues likely exist. "Since cpio has no mode where it can be securely used on untrusted files, the attacker can write to any path on the filesystem that the Zimbra user can access," Rapid7 researcher Ron Bowes said. The vulnerability, which is present in versions 8.8.15 and 9.0 of the software, affects several Linux distributions such as Oracle Linux 8, Red Hat Enterprise Linux 8, Rocky Linux 8, and CentOS 8, with the exception of Ubuntu due to the fact that pax is already installed by default.Ī successful exploitation of the flaw requires an attacker to email an archive file (CPIO or TAR) to a susceptible server, which is then inspected by Amavis using the cpio file archiver utility to extract its contents. "If the pax package is not installed, Amavis will fall-back to using cpio, unfortunately the fall-back is implemented poorly (by Amavis) and will allow an unauthenticated attacker to create and overwrite files on the Zimbra server, including the Zimbra webroot," the company said last month. While a fix is yet to be released, the software services company is urging users to install the "pax" utility and restart the Zimbra services. in shape, a thin black hem borderOccupation in Germany. ![]() The issue is said to have been abused since early September 2022, according to details shared on Zimbra forums. Late in October, commanded by Major General 1918, an additional Base. I know I say it as every damn Diaries comes out, but - hey Its been a long time since the last one Never again, we promise So, for this brand new Gamersyde Diaries, weve spent some quality time with the sharp-edged Dark Sector, Digital Extremes Gears of War clone that went out yesterday in Europe and a few weeks earlier in the United-States. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
March 2023
Categories |