PHPGroupWare Lang_Extract.PL Temporary File Symbolic Link Vulnerability
BID:12210
Info
PHPGroupWare Lang_Extract.PL Temporary File Symbolic Link Vulnerability
| Bugtraq ID: | 12210 |
| Class: | Design Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 30 2003 12:00AM |
| Updated: | Apr 30 2003 12:00AM |
| Credit: | Discovery of this vulnerability is credited to Norbert Bollow. |
| Vulnerable: |
PHPGroupWare PHPGroupWare 0.9.14 .003 PHPGroupWare PHPGroupWare 0.9.14 .002 PHPGroupWare PHPGroupWare 0.9.14 .001 PHPGroupWare PHPGroupWare 0.9.14 PHPGroupWare PHPGroupWare 0.9.13 PHPGroupWare PHPGroupWare 0.9.12 |
| Not Vulnerable: |
PHPGroupWare PHPGroupWare 0.9.14 .004 |
Discussion
PHPGroupWare Lang_Extract.PL Temporary File Symbolic Link Vulnerability
phpGroupWare is reportedly affected by a vulnerability regarding the creation of temporary files with predictable filenames. It is reported that a malicious user with write access to the $tmpdir could place a symbolic link there and cause the overwriting of files.
phpGroupWare is reportedly affected by a vulnerability regarding the creation of temporary files with predictable filenames. It is reported that a malicious user with write access to the $tmpdir could place a symbolic link there and cause the overwriting of files.
Exploit / POC
PHPGroupWare Lang_Extract.PL Temporary File Symbolic Link Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
PHPGroupWare Lang_Extract.PL Temporary File Symbolic Link Vulnerability
Solution:
The vendor has reportedly addressed this issue in phpGroupWare 0.9.14.004. However Symantec strongly recommends upgrading to the latest version; phpGroupWare 0.9.16.005.
Solution:
The vendor has reportedly addressed this issue in phpGroupWare 0.9.14.004. However Symantec strongly recommends upgrading to the latest version; phpGroupWare 0.9.16.005.
References
PHPGroupWare Lang_Extract.PL Temporary File Symbolic Link Vulnerability
References:
References:
- bug #3412 overview: insecure creation of temporary file (PHPGroupWare)
- PHPGroupWare Homepage (PHPGroupWare)