fc/f2c Unsafe Temporary Files May Let Local Users Obtain Elevated Privileges
|
|
SecurityTracker Alert ID: 1013028
|
|
SecurityTracker URL: http://securitytracker.com/id?1013028
|
|
CVE Reference: CAN-2005-0017
, CAN-2005-0018
(Links to External Site)
|
Date: Jan 28 2005
|
Impact: Modification of system information, Modification of user information, User access via local system
|
Version(s): 20010821
|
Description: Some vulnerabilities were reported in fc and f2c. A local user can obtain elevated privileges.
Debian reported that fc and f2c use temporary files in an unsafe manner. A local user can create a symbolic link (symlink) from
a critical file on the system to a temporary file to be used by fc/f2c. Then, when the application is run by a target user, the
symlinked file may be overwritten with the privileges of the target user.
Javier Fernandez-Sanguino Pena from the Debian Security
Audit project is credited with discovering these flaws.
|
Impact: A local user may be able to obtain elevated privileges of a target user when the target user runs fc or f2c.
|
Solution: No solution was available at the time of this entry.
|
Cause: Access control error, State error
|
Underlying OS: Linux (Any), UNIX (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Fri, 28 Jan 2005 03:16:23 -0500
Subject: [none]
|
CVE: CAN-2005-0017 CAN-2005-0018
Some vulnerabilities were reported in fc and f2c. A local user can obtain elevated
privileges. The applications use temporary files in an unsafe manner.
Javier Fernandez-Sanguino Pena from the Debian Security Audit project is credited with
discovering these flaws.
> CAN-2005-0017
>
> Multiple insecure temporary files in the f2c translator.
>
> CAN-2005-0018
>
> Two insecure temporary files in the f2 shell script.
|
|
