elvis-tiny File Overwrite Vulnerability
BID:1984
Info
elvis-tiny File Overwrite Vulnerability
| Bugtraq ID: | 1984 |
| Class: | Race Condition Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Sep 13 2000 12:00AM |
| Updated: | Sep 13 2000 12:00AM |
| Credit: | reported to bugtraq via Debian Security Announcement <[email protected]> on Wed, 22 Nov 2000 |
| Vulnerable: |
Debian Elvis Tiny 1.4.9 |
| Not Vulnerable: |
Debian Elvis Tiny 1.4.10 |
Discussion
elvis-tiny File Overwrite Vulnerability
Elvis-tiny is a compact vi-compatible text editor.
Due to a flaw in the program's creation and naming of temporary files, a race condition exists which could allow a properly-timed attack to read or overwrite data from files created using the vulnerable application. The affected files would be limited to those which are writable by the target user.
Depending on the privileges of the target user using Elvis, this could yield an elevation of privileges to the attacker, a denial of service, or further compromise of the host's security.
Elvis-tiny is a compact vi-compatible text editor.
Due to a flaw in the program's creation and naming of temporary files, a race condition exists which could allow a properly-timed attack to read or overwrite data from files created using the vulnerable application. The affected files would be limited to those which are writable by the target user.
Depending on the privileges of the target user using Elvis, this could yield an elevation of privileges to the attacker, a denial of service, or further compromise of the host's security.
Solution / Fix
elvis-tiny File Overwrite Vulnerability
Solution:
This vulnerability has been eliminated in the current release, 1.4.10. Vendor recommends upgrading of vulnerable versions.
Solution:
This vulnerability has been eliminated in the current release, 1.4.10. Vendor recommends upgrading of vulnerable versions.
References
elvis-tiny File Overwrite Vulnerability
References:
References: