rident.pl Symbolic Link Vulnerability
BID:9968
Info
rident.pl Symbolic Link Vulnerability
| Bugtraq ID: | 9968 |
| Class: | Design Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 24 2004 12:00AM |
| Updated: | Mar 24 2004 12:00AM |
| Credit: | Discovery is credited to Martin <[email protected]>. |
| Vulnerable: |
rident.pl rident.pl 0.91 b |
| Not Vulnerable: |
rident.pl rident.pl 0.92 b |
Discussion
rident.pl Symbolic Link Vulnerability
It has been reported that rident.pl may be prone to a symbolic link vulnerability that may allow an attacker to corrupt or overwrite arbitrary files. This issue exists because the script writes output to a temporary file as 'rident.pid' in 'tmp' directory.
It has been reported that a user will require root privileges to invoke the affected script; this may increase the impact of this vulnerability.
It has been reported that rident.pl may be prone to a symbolic link vulnerability that may allow an attacker to corrupt or overwrite arbitrary files. This issue exists because the script writes output to a temporary file as 'rident.pid' in 'tmp' directory.
It has been reported that a user will require root privileges to invoke the affected script; this may increase the impact of this vulnerability.
Exploit / POC
rident.pl Symbolic Link Vulnerability
There is no exploit required.
There is no exploit required.
Solution / Fix
rident.pl Symbolic Link Vulnerability
Solution:
The vendor has released an update (Version 0.9.2b) to address this issue.
rident.pl rident.pl 0.91 b
Solution:
The vendor has released an update (Version 0.9.2b) to address this issue.
rident.pl rident.pl 0.91 b
-
rident.pl rident_0.9.2b.tar.gz
http://www.xs4all.nl/~rmeijer/rident_0.9.2b.tar.gz
References
rident.pl Symbolic Link Vulnerability
References:
References: