#VU35141 Improper Check for Dropped Privileges in bitlbee - CVE-2012-1187


| Updated: 2020-08-08

Vulnerability identifier: #VU35141

Vulnerability risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2012-1187

CWE-ID: CWE-273

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
bitlbee
Other software / Other software solutions

Vendor: www.bitlbee.org

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Bitlbee does not drop extra group privileges correctly in unix.c

Mitigation
Install update from vendor's website.

Vulnerable software versions

bitlbee: 3.0.4

External links
https://access.redhat.com/security/cve/cve-2012-1187
https://bugs.bitlbee.org/ticket/852
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1187
https://security-tracker.debian.org/tracker/CVE-2012-1187

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Improper Check for Dropped Privileges in www.bitlbee bitlbee
Fedora EPEL 5 update for bitlbee
Fedora EPEL 6 update for bitlbee