gzip gzexe Symlink Arbitrary File Overwrite

2004-11-08T13:20:57
ID OSVDB:11536
Type osvdb
Reporter OSVDB
Modified 2004-11-08T13:20:57

Description

Vulnerability Description

gzip contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is due to the gzexe scripts insecure creation of temporary files and can be exploited via symlink attacks to create or overwrite arbitrary files on the system with the privileges of the user executing a vulnerable script. This flaw may lead to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

gzip contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is due to the gzexe scripts insecure creation of temporary files and can be exploited via symlink attacks to create or overwrite arbitrary files on the system with the privileges of the user executing a vulnerable script. This flaw may lead to a loss of integrity.

References:

Secunia Advisory ID:13387 Secunia Advisory ID:13132 Secunia Advisory ID:13131 Related OSVDB ID: 11543 Related OSVDB ID: 11544 Other Advisory URL: http://www.trustix.org/errata/2004/0050/ Other Advisory URL: http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:142 Other Advisory URL: http://www.debian.org/security/2004/dsa-588 ISS X-Force ID: 17583 CVE-2004-0970 Bugtraq ID: 11288