Title: BestCrypt BCTool UMount Buffer Overflow Vulnerability
Severity: HIGH
Description:
BestCrypt is a commercial file system encryption software package distributed by Jetico. BestCrypt offers compatibility on the Windows and Linux platforms, using open development standards to offer a secure product.
A problem in the BestCrypt software package makes it possible for local users to gain elevated privileges. This problem can be exploited locally to obtain root access, resulting in complete system compromise. This vulnerability affects the the software on the Linux platform specifically.
Under normal conditions, the software package functions as a secure storage container on the local system. This is accomplished by mounting the contains as a loopback filesystem. The tool used to accomplish this task is the bctool.
The problem occurs in the handling of mount variables by the bctool program. It is possible to overflow memory buffers within the running program when using bctool to unmount the encrypted filesystem. This overflow results in the overwriting of stack variables, including the return address. As the bctool program is SUID, this results in the ability to run code locally as root, and gain an interactive root shell.
Affected Products:
- Jetico BestCrypt 0.6.0
- Jetico BestCrypt 0.7.0
- Jetico BestCrypt 0.8.0 -1
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
