QEMU CVE-2012-2652 Insecure Temporary File Creation Vulnerability
BID:53725
Info
QEMU CVE-2012-2652 Insecure Temporary File Creation Vulnerability
| Bugtraq ID: | 53725 |
| Class: | Design Error |
| CVE: |
CVE-2012-2652 |
| Remote: | No |
| Local: | Yes |
| Published: | May 24 2012 12:00AM |
| Updated: | Apr 13 2015 09:43PM |
| Credit: | Vincent Danen |
| Vulnerable: |
Ubuntu Ubuntu Linux 12.04 LTS i386 Ubuntu Ubuntu Linux 12.04 LTS amd64 Ubuntu Ubuntu Linux 11.10 i386 Ubuntu Ubuntu Linux 11.10 amd64 Ubuntu Ubuntu Linux 11.04 powerpc Ubuntu Ubuntu Linux 11.04 i386 Ubuntu Ubuntu Linux 11.04 ARM Ubuntu Ubuntu Linux 11.04 amd64 Ubuntu Ubuntu Linux 10.04 sparc Ubuntu Ubuntu Linux 10.04 powerpc Ubuntu Ubuntu Linux 10.04 i386 Ubuntu Ubuntu Linux 10.04 ARM Ubuntu Ubuntu Linux 10.04 amd64 SuSE Studio Extension for System z 1.2 QEMU QEMU 1.1 Mandriva Business Server 1 X86 64 Mandriva Business Server 1 Gentoo Linux Debian Linux 6.0 sparc Debian Linux 6.0 s/390 Debian Linux 6.0 powerpc Debian Linux 6.0 mips Debian Linux 6.0 ia-64 Debian Linux 6.0 ia-32 Debian Linux 6.0 arm Debian Linux 6.0 amd64 |
| Not Vulnerable: | |
Discussion
QEMU CVE-2012-2652 Insecure Temporary File Creation Vulnerability
QEMU creates temporary files in an insecure manner.
An attacker with local access could potentially exploit this issue to perform symbolic-link attacks overwriting arbitrary files in the context of the affected application.
Successfully mounting a symlink attack may allow the attacker to delete or corrupt sensitive files, which may result in a denial of service. Other attacks may also be possible.
QEMU creates temporary files in an insecure manner.
An attacker with local access could potentially exploit this issue to perform symbolic-link attacks overwriting arbitrary files in the context of the affected application.
Successfully mounting a symlink attack may allow the attacker to delete or corrupt sensitive files, which may result in a denial of service. Other attacks may also be possible.
Exploit / POC
QEMU CVE-2012-2652 Insecure Temporary File Creation Vulnerability
An attacker uses readily available commands to exploit this issue.
An attacker uses readily available commands to exploit this issue.
Solution / Fix
QEMU CVE-2012-2652 Insecure Temporary File Creation Vulnerability
Solution:
Updates are available. Please see the reference for more details.
Mandriva Business Server 1 X86 64
Solution:
Updates are available. Please see the reference for more details.
Mandriva Business Server 1 X86 64
-
Mandriva qemu-1.0-8.1.mbs1.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva qemu-img-1.0-8.1.mbs1.x86_64.rpm
http://www.mandriva.com/en/downloads/
References
QEMU CVE-2012-2652 Insecure Temporary File Creation Vulnerability
References:
References:
- Bug 824919 - (CVE-2012-2652) CVE-2012-2652 qemu: vulnerable to temporary file sy (Vincent Danen)
- QEMU Homepage (QEMU)