IBM AIX RC.BOOT Local Insecure Temporary File Creation Vulnerability

Bugtraq ID:	12992
Class:	Design Error
CVE:	CVE-2005-0991
Remote:	No
Local:	Yes
Published:	Mar 09 2004 12:00AM
Updated:	Jul 12 2009 11:56AM
Credit:	The vendor announced this issue.
Vulnerable:	IBM AIX 5.3 L IBM AIX 5.2 L IBM AIX 5.1 L IBM AIX 5.3 IBM AIX 5.2 IBM AIX 5.1
Not Vulnerable:

IBM AIX RC.BOOT Local Insecure Temporary File Creation Vulnerability

A local insecure temporary file creation vulnerability affects the IBM AIX '/SBIN/RC.BOOT' script. This issue is due to a design error that causes a file to be insecurely opened or created and subsequently written to.

An attacker may leverage this issue to corrupt arbitrary files with superuser privileges.

IBM AIX RC.BOOT Local Insecure Temporary File Creation Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

IBM AIX RC.BOOT Local Insecure Temporary File Creation Vulnerability

Solution:
IBM has released advisories (IY59205, IY59206, IY59207) and APARs to address this issue.


IBM AIX 5.1

• IBM IY59207
  http://www-912.ibm.com/eserver/support/fixes/fcgui.jsp?whichFix=APAR&f ixes=IY59207

IBM AIX 5.2

• IBM IY59206
  http://www-912.ibm.com/eserver/support/fixes/fcgui.jsp?whichFix=APAR&f ixes=IY59206

IBM AIX 5.3

• IBM IY59205
  http://www-912.ibm.com/eserver/support/fixes/fcgui.jsp

IBM AIX 5.1 L

• IBM IY59207
  http://www-912.ibm.com/eserver/support/fixes/fcgui.jsp?whichFix=APAR&f ixes=IY59207

IBM AIX 5.2 L

• IBM IY59206
  http://www-912.ibm.com/eserver/support/fixes/fcgui.jsp?whichFix=APAR&f ixes=IY59206

IBM AIX RC.BOOT Local Insecure Temporary File Creation Vulnerability

References:

• IY59205: /SBIN/RC.BOOT INSECURELY HANDLES TEMPORARY FILES. (IBM)
  
• IY59206: /SBIN/RC.BOOT INSECURELY HANDLES TEMPORARY FILES. (IBM)
  
• IY59207: /SBIN/RC.BOOT INSECURELY HANDLES TEMPORARY FILES. (IBM)