COMMAND

    AdminSuite

SYSTEMS AFFECTED

    Sites using AdminSuite 2.1 and 2.2 (Solaris)

PROBLEM

    AdminSuite is a package  which provides graphical user  interfaces
    to perform  various system  administration tasks  such as managing
    users, groups, and hosts.

    AdminSuite 2.1 uses excessive permissions when adding new users to
    the NIS+ passwd table. This allows users to change their  password
    table  entries  to  become  root.  This  problem  has  been  fixed
    AdminSuite 2.2.

    AdminSuite 2.1 incorrectly changes  the permissions on the  source
    file used to build the NIS (YP)  passwd map.  As a result, it  may
    be  possible  for  any  user  to  edit  the /etc/passwd file. This
    problem has been fixed in AdminSuite 2.2.

    AdminSuite 2.1 creates temporary files in an insecure manner  when
    updating a NIS (YP) database. As  a result, it may be possible  to
    manipulate  AdminSuite  into  over-writing  arbitrary files on the
    system including the  NIS (YP) map  source file. This  problem has
    been fixed in AdminSuite 2.2.

    AdminSuite 2.1 and 2.2 creates lock files insecurely which may  be
    exploited to gain root access.

    AdminSuite 2.1  and 2.2  Database Manager  "save" option  executes
    under setgid bin privileges for non-privileged users. This may  be
    exploited by non-privileged users to gain root access.

SOLUTION

    The vulnerabilities relating to  AdminSuite 2.1 and 2.2  are fixed
    by the following patches:

    AdminSuite version  Patch ID
    ------------------  --------
    2.1 (sparc)         103235-08
    2.1 (x86)           103236-08
    2.2 (sparc)         103502-04
    2.2 (x86)           103503-03