aview 'asciiview' Insecure Temporary File Creation Vulnerability

Bugtraq ID:	30885
Class:	Design Error
CVE:	CVE-2008-4935
Remote:	No
Local:	Yes
Published:	Aug 28 2008 12:00AM
Updated:	Dec 15 2008 09:11PM
Credit:	Dmitry E. Oboukhov
Vulnerable:	Jan Hubicka aview 1.3.0 RC1 Gentoo Linux
Not Vulnerable:

aview 'asciiview' Insecure Temporary File Creation Vulnerability

The 'aview' program creates temporary files in an insecure manner.

An attacker with local access could potentially exploit this issue to perform symbolic-link attacks, overwriting arbitrary files in the context of the affected application.

Successfully mounting a symlink attack may allow the attacker to delete or corrupt sensitive files, which may result in a denial of service. Other attacks may also be possible.

This issue affects aview 1.3.0 RC1; other versions may also be affected.

aview 'asciiview' Insecure Temporary File Creation Vulnerability

An attacker uses readily available commands to exploit this issue.

aview 'asciiview' Insecure Temporary File Creation Vulnerability

Solution:
Fixes are available. Please see the references for more information.

aview 'asciiview' Insecure Temporary File Creation Vulnerability

References:

• aview Homepage (Jan Hubicka)
  
• Insecure tmp files in Debian packages (Dmitry E. Oboukhov)
  
• The possibility of attack with the help of symlinks in some Debian packages (Dmitry E. Oboukhov)