BitchX E_HOSTNAME Function Insecure Temporary File Creation Vulnerability
BID:26326
Info
BitchX E_HOSTNAME Function Insecure Temporary File Creation Vulnerability
| Bugtraq ID: | 26326 |
| Class: | Design Error |
| CVE: |
CVE-2007-5839 |
| Remote: | No |
| Local: | Yes |
| Published: | Nov 05 2007 12:00AM |
| Updated: | Apr 27 2009 07:06PM |
| Credit: | Nico Golde of Debian Testing security team disclosed this vulnerability. |
| Vulnerable: |
Slackware Linux -current Gentoo Linux BitchX IRC Client 1.1 -final BitchX IRC Client 1.1 |
| Not Vulnerable: | |
Discussion
BitchX E_HOSTNAME Function Insecure Temporary File Creation Vulnerability
BitchX is prone to a security vulnerability because it creates temporary files in an insecure manner.
An attacker with local access could potentially exploit this issue to perform symlink attacks, overwriting arbitrary files in the context of the affected application.
Successfully mounting a symlink attack may allow the attacker to overwrite or corrupt sensitive files, which may result in a denial of service. Other attacks may also be possible.
This issue affects BitchX 1.1; other versions may also be vulnerable.
BitchX is prone to a security vulnerability because it creates temporary files in an insecure manner.
An attacker with local access could potentially exploit this issue to perform symlink attacks, overwriting arbitrary files in the context of the affected application.
Successfully mounting a symlink attack may allow the attacker to overwrite or corrupt sensitive files, which may result in a denial of service. Other attacks may also be possible.
This issue affects BitchX 1.1; other versions may also be vulnerable.
Exploit / POC
BitchX E_HOSTNAME Function Insecure Temporary File Creation Vulnerability
An attacker uses readily available commands to exploit the issue.
An attacker uses readily available commands to exploit the issue.
Solution / Fix
BitchX E_HOSTNAME Function Insecure Temporary File Creation Vulnerability
Solution:
Please see the referenced advisories for details on obtaining and applying the appropriate updates.
Solution:
Please see the referenced advisories for details on obtaining and applying the appropriate updates.
References
BitchX E_HOSTNAME Function Insecure Temporary File Creation Vulnerability
References:
References:
- BitchX Home Page (BitchX )
- Debian Bug report logs - #449149 (Nico Golde
)