SuSE gfxmenu could allow a local attacker to bypass the password
| suse-gfxmenu-password-bypass (10865) |  Medium Risk |
Description:
SuSE could allow a local attacker to bypass the root password, caused by a vulnerability in the gfxmenu. gfxmenu is configured with the boot manager GRUB by default on many systems. If gfxmenu is installed, a local attacker could pass additional kernel boot parameters to cause the system to reboot, which would allow the attacker to bypass password authentication and gain unauthorized access to the system. An attacker could use this vulnerability to install a backdoor on the affected system.
Platforms Affected:
- SuSE, SuSE Linux 8.1
Remedy:
No remedy available as of November 29, 2008.
Consequences:
Bypass Security
References:
- VulnWatch Mailing List, Fri Dec 13 2002 - 19:18:44 CST , gfxboot allows boot password circumvention, SuSE 8.1 GRUB at http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0108.html.
- BID-6424: SuSE gfxmenu GRUB Boot Loader Password Bypassing Vulnerability
Reported:
Dec 13, 2002
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.
For corrections or additions please email xforce@iss.net