SNMPTRAPFMT Insecure Temporary File Creation Vulnerability

Bugtraq ID:	17182
Class:	Design Error
CVE:	CVE-2006-0050
Remote:	No
Local:	Yes
Published:	Mar 22 2006 12:00AM
Updated:	Mar 22 2006 05:14PM
Credit:	Discovered by Will Aoki.
Vulnerable:	Debian snmptrapfmt 1.03 Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 Debian Linux 3.0 sparc Debian Linux 3.0 s/390 Debian Linux 3.0 ppc Debian Linux 3.0 mipsel Debian Linux 3.0 mips Debian Linux 3.0 m68k Debian Linux 3.0 ia-64 Debian Linux 3.0 ia-32 Debian Linux 3.0 hppa Debian Linux 3.0 arm Debian Linux 3.0 alpha Debian Linux 3.0
Not Vulnerable:

SNMPTRAPFMT Insecure Temporary File Creation Vulnerability

The 'snmptrapfmt' package creates temporary files in an insecure manner. This may allow a local attacker to perform symbolic-link attacks.

Successful exploits may cause sensitive data or configuration files to be overwritten. This may result in a denial of service; other attacks may also be possible.

SNMPTRAPFMT Insecure Temporary File Creation Vulnerability

An exploit is not required.

SNMPTRAPFMT Insecure Temporary File Creation Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]

SNMPTRAPFMT Insecure Temporary File Creation Vulnerability

References: