Vim vimspell.sh Script Symlink Arbitrary File Overwrite

2005-01-13T09:53:27
ID OSVDB:12883
Type osvdb
Reporter Javier Fernandez-Sanguino Pena(jfs@computer.org)
Modified 2005-01-13T09:53:27

Description

Vulnerability Description

Vim contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered due to the tclflags and vimspell.sh scripts creating temporary files insecurely allowing an attacker to create symlinks and overwrite arbitrary files. This flaw may lead to a loss of Integrity and/or Availability.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, The Fedora Project has released a patch to address this vulnerability.

Short Description

Vim contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered due to the tclflags and vimspell.sh scripts creating temporary files insecurely allowing an attacker to create symlinks and overwrite arbitrary files. This flaw may lead to a loss of Integrity and/or Availability.

References:

Vendor URL: http://www.vim.org/ Security Tracker: 1012938 Secunia Advisory ID:13841 Secunia Advisory ID:14115 Secunia Advisory ID:13847 Secunia Advisory ID:14356 Related OSVDB ID: 12882 RedHat RHSA: RHSA-2005:122 Other Advisory URL: http://www.mandrakesoft.com/security/advisories?name=MDKSA-2005:029 ISS X-Force ID: 18870 CVE-2005-0069