Acme Thttpd Insecure Temporary Logfile Creation Vulnerability
BID:20891
Info
Acme Thttpd Insecure Temporary Logfile Creation Vulnerability
| Bugtraq ID: | 20891 |
| Class: | Access Validation Error |
| CVE: |
CVE-2006-4248 |
| Remote: | No |
| Local: | Yes |
| Published: | Nov 03 2006 12:00AM |
| Updated: | Jan 15 2007 07:40PM |
| Credit: | Marco d'Itri is credited with the discovery of this vulnerability. |
| Vulnerable: |
Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 Acme thttpd 2.22 Acme thttpd 2.21 b Acme thttpd 2.21 Acme thttpd 2.20 c Acme thttpd 2.20 b Acme thttpd 2.20 Acme thttpd 2.19 Acme thttpd 2.18 Acme thttpd 2.17 Acme thttpd 2.16 Acme thttpd 2.15 Acme thttpd 2.14 Acme thttpd 2.13 Acme thttpd 2.12 Acme thttpd 2.11 Acme thttpd 2.10 Acme thttpd 2.0.9 Acme thttpd 2.0.8 Acme thttpd 2.0.7 beta 0.4 Acme thttpd 2.0.7 Acme thttpd 2.0.6 Acme thttpd 2.0.5 Acme thttpd 2.0.4 Acme thttpd 2.0.3 Acme thttpd 2.0.2 Acme thttpd 2.0.1 Acme thttpd 2.0 Acme thttpd 1.95 Acme thttpd 1.90 a Acme thttpd 1.0 .x Acme thttpd 1.0 Acme thttpd 2.1x |
| Not Vulnerable: |
Acme thttpd 2.24 Acme thttpd 2.23 b1 Acme thttpd 2.25 b |
Discussion
Acme Thttpd Insecure Temporary Logfile Creation Vulnerability
The 'thttpd' program creates temporary log files in an insecure manner.
An attacker with local access could potentially exploit this issue to overwrite files in the context of the webserver process.
A successful exploit would most likely result in loss of data or a denial of service if critical files are overwritten in the attack. Other attacks may be possible as well.
Versions prior to 2.23 beta 1 are vulnerable.
The 'thttpd' program creates temporary log files in an insecure manner.
An attacker with local access could potentially exploit this issue to overwrite files in the context of the webserver process.
A successful exploit would most likely result in loss of data or a denial of service if critical files are overwritten in the attack. Other attacks may be possible as well.
Versions prior to 2.23 beta 1 are vulnerable.
Exploit / POC
Acme Thttpd Insecure Temporary Logfile Creation Vulnerability
An exploit is not required.
An exploit is not required.
Solution / Fix
Acme Thttpd Insecure Temporary Logfile Creation Vulnerability
Solution:
The vendor has released an update to address this issue; please see the references for more information.
Acme thttpd 2.1x
Acme thttpd 1.0 .x
Acme thttpd 1.0
Acme thttpd 1.90 a
Acme thttpd 1.95
Acme thttpd 2.0
Acme thttpd 2.0.1
Acme thttpd 2.0.2
Acme thttpd 2.0.3
Acme thttpd 2.0.4
Acme thttpd 2.0.5
Acme thttpd 2.0.6
Acme thttpd 2.0.7 beta 0.4
Acme thttpd 2.0.7
Acme thttpd 2.0.8
Acme thttpd 2.0.9
Acme thttpd 2.10
Acme thttpd 2.11
Acme thttpd 2.12
Acme thttpd 2.13
Acme thttpd 2.14
Acme thttpd 2.15
Acme thttpd 2.16
Acme thttpd 2.17
Acme thttpd 2.18
Acme thttpd 2.19
Acme thttpd 2.20 c
Acme thttpd 2.20 b
Acme thttpd 2.20
Acme thttpd 2.21
Acme thttpd 2.21 b
Acme thttpd 2.22
Solution:
The vendor has released an update to address this issue; please see the references for more information.
Acme thttpd 2.1x
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 1.0 .x
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 1.0
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 1.90 a
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 1.95
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.0
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.0.1
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.0.2
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.0.3
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.0.4
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.0.5
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.0.6
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.0.7 beta 0.4
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.0.7
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.0.8
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.0.9
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.10
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.11
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.12
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.13
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.14
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.15
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.16
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.17
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.18
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.19
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.20 c
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.20 b
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.20
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.21
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.21 b
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
Acme thttpd 2.22
-
Acme thttpd-2.25b.tar.gz
http://www.acme.com/software/thttpd/thttpd-2.25b.tar.gz
References
Acme Thttpd Insecure Temporary Logfile Creation Vulnerability
References:
References:
- Debian Homepage (Debian)
- thttpd Homepage (Acme)