GNUCash Insecure Temporary File Creation Vulnerability
BID:22610
Info
GNUCash Insecure Temporary File Creation Vulnerability
| Bugtraq ID: | 22610 |
| Class: | Race Condition Error |
| CVE: |
CVE-2007-0007 |
| Remote: | No |
| Local: | Yes |
| Published: | Jan 19 2007 12:00AM |
| Updated: | Feb 28 2007 10:05PM |
| Credit: | The vendor reported this vulnerability. |
| Vulnerable: |
Redhat Fedora Core6 Mandriva Linux Mandrake 2007.0 x86_64 Mandriva Linux Mandrake 2007.0 GNU GNUCash 2.0.4 |
| Not Vulnerable: |
GNU GNUCash 2.0.5 |
Discussion
GNUCash Insecure Temporary File Creation Vulnerability
GNUCash creates temporary files in an insecure way.
An attacker with local access could potentially exploit this issue to perform symlink attacks, overwriting arbitrary files in the context of the affected application.
Successfully exploiting a symlink attack may allow an attacker to overwrite or corrupt sensitive files. This may result in a denial of service; other attacks may also be possible.
GNUCash 2.0.5 and prior versions are vulnerable to this issue.
GNUCash creates temporary files in an insecure way.
An attacker with local access could potentially exploit this issue to perform symlink attacks, overwriting arbitrary files in the context of the affected application.
Successfully exploiting a symlink attack may allow an attacker to overwrite or corrupt sensitive files. This may result in a denial of service; other attacks may also be possible.
GNUCash 2.0.5 and prior versions are vulnerable to this issue.
Exploit / POC
GNUCash Insecure Temporary File Creation Vulnerability
An attacker uses readily available commands to exploit the issue.
An attacker uses readily available commands to exploit the issue.
Solution / Fix
GNUCash Insecure Temporary File Creation Vulnerability
Solution:
Please see the referenced vendor advisories for information on obtaining fixes.
Redhat Fedora Core6
GNU GNUCash 2.0.4
Solution:
Please see the referenced vendor advisories for information on obtaining fixes.
Redhat Fedora Core6
-
RedHat gnucash-2.0.5-1.fc6.i386.rpm
Fedora Core 6
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/ -
RedHat gnucash-2.0.5-1.fc6.ppc.rpm
Fedora Core 6
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/ -
RedHat gnucash-2.0.5-1.fc6.src.rpm
Fedora Core 6
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/ -
RedHat gnucash-2.0.5-1.fc6.x86_64.rpm
Fedora Core 6
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/ -
RedHat gnucash-debuginfo-2.0.5-1.fc6.i386.rpm
Fedora Core 6
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/ -
RedHat gnucash-debuginfo-2.0.5-1.fc6.ppc.rpm
Fedora Core 6
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/ -
RedHat gnucash-debuginfo-2.0.5-1.fc6.x86_64.rpm
Fedora Core 6
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/
GNU GNUCash 2.0.4
-
GNU GnuCash 2.0.5 Release - 2007-02-18 21:13
http://download.sourceforge.net/gnucash/
References
GNUCash Insecure Temporary File Creation Vulnerability
References:
References:
- GNU Homepage (GNU)
- GNUCash Release Name: 2.0.5 (GNUCash)