vobcopy vobcopy.bla Insecure Temporary File Creation Vulnerability
BID:26233
Info
vobcopy vobcopy.bla Insecure Temporary File Creation Vulnerability
| Bugtraq ID: | 26233 |
| Class: | Design Error |
| CVE: |
CVE-2007-5718 |
| Remote: | No |
| Local: | Yes |
| Published: | Oct 29 2007 12:00AM |
| Updated: | May 07 2015 05:34PM |
| Credit: | Joey Hess is credited with the discovery of this vulnerability. |
| Vulnerable: |
Robos vobcopy 0.5.14-2 Gentoo Linux Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 Debian Linux 4.0 sparc Debian Linux 4.0 s/390 Debian Linux 4.0 powerpc Debian Linux 4.0 mipsel Debian Linux 4.0 mips Debian Linux 4.0 m68k Debian Linux 4.0 ia-64 Debian Linux 4.0 ia-32 Debian Linux 4.0 hppa Debian Linux 4.0 arm Debian Linux 4.0 amd64 Debian Linux 4.0 alpha Debian Linux 4.0 |
| Not Vulnerable: | |
Discussion
vobcopy vobcopy.bla Insecure Temporary File Creation Vulnerability
The 'vobcopy' tool creates temporary files in an insecure manner.
An attacker with local access could potentially exploit this issue to perform symlink attacks, overwriting arbitrary files in the context of the affected application.
Successfully mounting a symlink attack may allow the attacker to overwrite or corrupt sensitive files, which may result in a denial of service. Other attacks may also be possible.
The 'vobcopy' tool creates temporary files in an insecure manner.
An attacker with local access could potentially exploit this issue to perform symlink attacks, overwriting arbitrary files in the context of the affected application.
Successfully mounting a symlink attack may allow the attacker to overwrite or corrupt sensitive files, which may result in a denial of service. Other attacks may also be possible.
Exploit / POC
vobcopy vobcopy.bla Insecure Temporary File Creation Vulnerability
An attacker uses readily available commands to exploit the issue.
An attacker uses readily available commands to exploit the issue.
Solution / Fix
vobcopy vobcopy.bla Insecure Temporary File Creation Vulnerability
Solution:
A fix is available. Please see the references for more information.
Solution:
A fix is available. Please see the references for more information.
References
vobcopy vobcopy.bla Insecure Temporary File Creation Vulnerability
References:
References:
- vobcopy Homepage (Robos)
- Debian Bug report logs - #448319 (Joey Hess)