Results 1 to 3 of 3
  1. #1
    Join Date
    Mar 2003
    Location
    Canada
    Posts
    8,910

    Exclamation DirectAdmin - MySQL Local Privilege Escalation Vulnerability (R911-0078)

    Type: Privilege Escalation
    Location: Local
    Impact: Critical
    Product: DirectAdmin
    Website: http://www.directadmin.com
    Vulnerable Version: v1.43
    Fixed Version: v1.44
    CVE: -
    R911: 0078
    Date: 2013-10-07
    By: Rack911
    Product Description:

    DirectAdmin is a graphical web-based web hosting control panel designed to make administration of websites easier.

    Vulnerability Description:

    There is a flaw within the backup system that allows an attacker to rub arbitrary commands while restoring MySQL databases as root that could ultimately lead to a root compromise.

    Proof of Concept:

    Due to the nature of this security flaw, we will not be posting a Proof of Concept until a much later date.

    Impact:

    We have deemed this vulnerability to be rated as CRITICAL due to the fact that a normal user can gain an instant root shell.

    Vulnerable Version:

    This vulnerability was tested against DirectAdmin v1.43 and is believed to exist in all prior versions.

    Fixed Version:

    This vulnerability was patched in DirectAdmin v1.44.

    Vendor Contact Timeline:

    2013-06-22: Vendor contacted via email.
    2013-06-22: Vendor confirms vulnerability.
    2013-09-26: Vendor issues v1.44 update.
    2013-10-07: Rack911 issues security advisory.
    Patrick William | RACK911 Labs | Software Security Auditing
    400+ Vulnerabilities Found - Quote @ https://www.RACK911Labs.com

    www.HostingSecList.com - Security notices for the hosting community.

  2. #2
    Join Date
    Mar 2003
    Location
    California USA
    Posts
    13,294
    Steven Ciaburri | Industry's Best Server Management - Rack911.com
    Software Auditing - 400+ Vulnerabilities Found - Quote @ https://www.RACK911Labs.com
    Fully Managed Dedicated Servers (Las Vegas, New York City, & Amsterdam) (AS62710)
    FreeBSD & Linux Server Management, Security Auditing, Server Optimization, PCI Compliance

  3. #3
    Join Date
    Apr 2012
    Location
    United States
    Posts
    86
    Excellent find! Thank you.

Similar Threads

  1. RVSiteBuilder - Hardlink Local Privilege Escalation Vulnerability (R911-0062)
    By Patrick in forum Hosting Security and Technology
    Replies: 7
    Last Post: 09-05-2013, 08:23 AM
  2. RVSkin - Hardlink Local Privilege Escalation Vulnerability (R911-0064)
    By Steven in forum Hosting Security and Technology
    Replies: 0
    Last Post: 09-03-2013, 09:33 AM
  3. RVSkin - Hardlink Local Privilege Escalation Vulnerability (R911-0063)
    By Steven in forum Hosting Security and Technology
    Replies: 0
    Last Post: 09-03-2013, 09:32 AM
  4. cPanel - Privilege Escalation Vulnerability (R911-0052)
    By Patrick in forum Hosting Security and Technology
    Replies: 0
    Last Post: 08-29-2013, 09:05 PM
  5. cPremote - Privilege Escalation Vulnerability (R911-0050)
    By Steven in forum Hosting Security and Technology
    Replies: 13
    Last Post: 08-14-2013, 11:57 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •