BMV Insecure Temporary File Vulnerability
BID:12229
Info
BMV Insecure Temporary File Vulnerability
| Bugtraq ID: | 12229 |
| Class: | Access Validation Error |
| CVE: |
CVE-2003-0014 |
| Remote: | No |
| Local: | Yes |
| Published: | Jan 11 2005 12:00AM |
| Updated: | Jul 12 2009 09:27AM |
| Credit: | Discovery is credited to Holger Klawitter. |
| Vulnerable: |
BMV BMV 1.2 |
| Not Vulnerable: | |
Discussion
BMV Insecure Temporary File Vulnerability
BMV creates temporary files in an insecure manner. A local attacker could take advantage of this issue to perform symbolic link attacks and corrupt files in the context of the user running the application.
It is not known if this vulnerability could be exploited to gain elevated privileges, though at the very least an attacker could cause critical files to be overwritten, causing loss of data or a denial of service condition.
BMV creates temporary files in an insecure manner. A local attacker could take advantage of this issue to perform symbolic link attacks and corrupt files in the context of the user running the application.
It is not known if this vulnerability could be exploited to gain elevated privileges, though at the very least an attacker could cause critical files to be overwritten, causing loss of data or a denial of service condition.
Exploit / POC
BMV Insecure Temporary File Vulnerability
There is no exploit required.
There is no exploit required.
Solution / Fix
BMV Insecure Temporary File Vulnerability
Solution:
Debian has released advisory DSA 633-1 to provide updates for this issue.
BMV BMV 1.2
Solution:
Debian has released advisory DSA 633-1 to provide updates for this issue.
BMV BMV 1.2
-
Debian bmv_1.2-14.2_i386.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/b/bmv/bmv_1.2-14.2_i386.d eb
References
BMV Insecure Temporary File Vulnerability
References:
References: