ipmenu symlink attack
| ipmenu-symlink (16052) |  Medium Risk |
Description:
ipmenu creates the ipmenu.log temporary file. A local attacker could create a symbolic link from this file to an arbitrary file on the system, which could allow the attacker to create or overwrite files on the system.
Consequences:
File Manipulation
Remedy:
Apply the appropriate patch for your system. See References.
References:
- BID-10269: IPMenu Log File Symbolic Link Vulnerability
- CVE-2004-2569: ipmenu 0.0.3 before Debian GNU/Linux ipmenu_0.0.3-5 allows local users to overwrite arbitrary files via a symlink attack on the ipmenu.log temporary file.
- DSA-907: ipmenu -- insecure temporary file
- OSVDB ID: 5788: ipmenu ipmenu.log Symlink Arbitrary File Overwrite
- SA11526: ipmenu Insecure Temporary File Creation Vulnerability
- SECTRACK ID: 1010064: ipmenu Unsafe `ipmenu.log` Temporary File Lets Local Users Gain Root Privileges
Platforms Affected:
- David Stes ipmenu 0.0.3
- Debian Debian Linux 3.0
- Debian Debian Linux 3.1
Reported:
May 04, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net