vobcopy vobcopy.bla file symlink

vobcopy-vobcopybla-symlink (38172) The risk level is classified as MediumMedium Risk

Description:

vobcopy could allow a local attacker to launch a symlink attack. The vobcopy.bla file is opened with insecure permissions when running in quiet mode. A local attacker could exploit this vulnerability by creating a symbolic link from a temporary file to other files on the system, which would allow the attacker to overwrite arbitrary files on the system with the privileges of the victim.

Platforms Affected:

  • Gentoo, Linux
  • Robos, vobcopy 0.5.14-2

Remedy:

Apply the appropriate patch for your system. See References.

Consequences:

File Manipulation

References:

  • Debian Bug report logs - #448319, opens /tmp/vobcopy.bla insecurely, symlink attack at http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=448319.
  • vobcopy Web site, vobcopy at http://vobcopy.org/.
  • BID-26233: vobcopy vobcopy.bla Insecure Temporary File Creation Vulnerability
  • CVE-2007-5718: vobcopy 0.5.14 allows local users to append data to an arbitrary file, or create an arbitrary new file, via a symlink attack on the (1) /tmp/vobcopy.bla or (2) /tmp/vobcopy_0.5.14.log temporary file.
  • GLSA-200803-11: Vobcopy: Insecure temporary file creation
  • SA27420: vobcopy "/tmp/vobcopy.bla" Insecure Temporary File

Reported:

Oct 27, 2007

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page