下面是原始网页http://seclists.org/bugtraq/2017/Nov/40的快照。安全客与该网页作者无关,不对其内容负责。 刷新快照
Bugtraq: [CVE-2017-15288] A privilege escalation vulnerability in the Scala compilation daemon
Home page logo

Bugtraq mailing list archives

[CVE-2017-15288] A privilege escalation vulnerability in the Scala compilation daemon
From: jason.zaugg () lightbend com
Date: Mon, 13 Nov 2017 22:18:15 GMT

A privilege escalation vulnerability has been identified in the Scala compilation daemon.

The compile daemon is started explicitly by the `fsc` command, or implicitly by executing
a Scala source file as a script (e.g `scala MyScript.scala`). Note: Using the `scala`
command to start a REPL or to run a pre-compiled class does not start the compile daemon.

# Impact

While the compile daemon is running, an attacker with local access to the machine can
execute code as the user that started the compile daemon, and can write arbitrary
class files to any location on the filesystem that the user has access to.

# Affected Versions

  - Scala 2.1.6-2.10.6; 2.11.0-2.11.11; 2.12.0-2.12.3

# Mitigation

  - Use `scala -nocompdaemon MyScript.scala` rather than `scala MyScript.scala` to
    disable the implicit startup and use of the daemon. 
  - Avoid explicitly starting `fsc` 
  - Upgrade to Scala 2.10.7 2.11.12, 2.12.4 or higher which restricts the sensitive file to be
    readable only by the owner. These releases also change the location of the sensitive
    file: it is written in the directory `$HOME/.scalac`.

Announcement: http://scala-lang.org/news/security-update-nov17.html

Scala Downloads: http://scala-lang.org/download/


  By Date           By Thread  

Current thread:
  • [CVE-2017-15288] A privilege escalation vulnerability in the Scala compilation daemon jason . zaugg (Nov 14)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]