Debian feta 'to-upgrade' Plugin Insecure Temporary File Creation Vulnerability

Bugtraq ID:	30899
Class:	Design Error
CVE:	CVE-2008-4440
Remote:	No
Local:	Yes
Published:	Aug 24 2008 12:00AM
Updated:	Oct 06 2008 05:28PM
Credit:	Dmitry E. Oboukhov
Vulnerable:	Debian Feta 1.4.16 Debian Feta 1.4.15 + Debian Linux 4.0 sparc + Debian Linux 4.0 s/390 + Debian Linux 4.0 powerpc + Debian Linux 4.0 mipsel + Debian Linux 4.0 mips + Debian Linux 4.0 m68k + Debian Linux 4.0 ia-64 + Debian Linux 4.0 ia-32 + Debian Linux 4.0 hppa + Debian Linux 4.0 arm + Debian Linux 4.0 amd64 + Debian Linux 4.0 alpha + Debian Linux 4.0
Not Vulnerable:

Debian feta 'to-upgrade' Plugin Insecure Temporary File Creation Vulnerability

Debian feta creates temporary files in an insecure manner.

An attacker with local access could potentially exploit this issue to perform symbolic-link attacks, overwriting arbitrary files in the context of the affected application.

Successfully mounting a symlink attack may allow the attacker to delete or corrupt sensitive files, which may result in a denial of service. Other attacks may also be possible.

Debian feta 1.4.16 is vulnerable; other versions may also be affected.

Debian feta 'to-upgrade' Plugin Insecure Temporary File Creation Vulnerability

An attacker uses readily available commands to exploit this issue.

Debian feta 'to-upgrade' Plugin Insecure Temporary File Creation Vulnerability

Solution:
A Debian advisory and fixes are available. Please see the references for more information.

Debian feta 'to-upgrade' Plugin Insecure Temporary File Creation Vulnerability

References:

• #496397 - The possibility of attack with the help of symlinks in some Debian pac (Debian)
  
• Debian Feta (Debian)