CVE-1999-0381

Vulnerability

A buffer overflow vulnerability exists in the syslog utility of super versions 3.11.6 and earlier. This issue occurs in the Error() function within error.c where a buffer named buf[MAXPRINT] is used without proper bounds checking. The syslog option must be enabled for this vulnerability to be present [1].

Exploitation

An attacker with local access can exploit this vulnerability. The SUPER program must be compiled with the SYSLOG option enabled. The exploit involves overwriting a buffer to gain control of the instruction pointer, allowing the attacker to execute arbitrary code. The provided exploit code creates a SUID bash shell owned by root at /tmp/sh [1].

Impact

Successful exploitation of this vulnerability allows a local user to gain root privileges on the affected system. This means the attacker can achieve complete control over the machine, including the ability to read, modify, or delete any file, and execute any command with the highest level of privilege [1].

Mitigation

No specific patched version is mentioned in the available references. However, the vulnerability is known to affect super versions 3.11.6 and earlier. Users are advised to upgrade to a version that addresses this vulnerability if available. Workarounds or further mitigation details are not yet disclosed in the available references [1].