IBM AIX dump_smutil.sh utility creates insecure temporary files
| aix-dump-tmpfile-insecure (13476) |  Medium Risk |
Description:
The dump_smutil.sh utility in IBM AIX could allow a local attacker to launch a symlink attack. dump_smutil.sh creates insecure temporary files. This could allow a local attacker to overwrite sensitive files on the system with privileges of the utility.
Consequences:
File Manipulation
Remedy:
For IBM AIX 5.1:
Apply the APAR IY33055 patch, as listed in the IBM APAR IY33055. See References.
References:
- IBM AIX APAR IY33055: Insecure Temporary file created by dump_smutil.sh.
- IBM AIX APAR IY34617: INSECURE TEMPORARY FILE CREATED BY DUMP_SMUTIL.SH.
- BID-8802: IBM dump_smutil.sh Insecure Temporary File Creation Vulnerability
- CVE-2002-1550: dump_smutil.sh in IBM AIX allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Platforms Affected:
- IBM AIX 5.1
Reported:
Sep 26, 2003
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net