Note: This is an archival copy of Security Sun Alert 200459 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000339.1.
Sun Ray Server Software 3.0
Sun Ray Server Software 2.0
Date of Workaround Release
Date of Resolved Release
A security vulnerability in the Sun Ray Server 2.0 and 3.x Software (SRSS) utxconfig(1) utility may allow a local unprivileged user the ability to create or overwrite arbitrary files on the system.
Note: utxconfig(1) is the Sun Ray DTU X server configuration utility.
This issue can occur in the following releases:
To determine the version of Sun Ray Server Software on a system, the following command can be run:
# /usr/bin/pkginfo -l SUNWuto | grep -i version VERSION: 3.1_32,REV=2005.08.24.08.55
To determine if the utxconfig(1) utility has been installed as part of the Sun Ray server software, the following command can be run:
$ pkginfo SUNWuta
There are no symptoms that would indicate the described issue has occurred.
To work around the described issue, temporarily remove the setuid(2) bit from the utxconfig(1) command until the patch can be applied. To apply this change, the following command can be run:
# chmod u-s /opt/SUNWut/bin/utxconfig
Note: Removing the setuid(2) bit from the command may decrease its functionality for non-privileged users.
This issue is addressed in the following releases:
This solution has no attachment