ConTEXt TEXutil --silent Symlink Arbitrary File Overwrite

2004-04-04T00:00:00
ID OSVDB:16999
Type osvdb
Reporter Shaun Colley(shaunige@yahoo.co.uk)
Modified 2004-04-04T00:00:00

Description

Vulnerability Description

ConTEXt TEXutil contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the texutil.pl script creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files, resulting in a loss of integrity.

Solution Description

Upgrade to the current version, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): modify texutil.pl as specified in the advisory.

Short Description

ConTEXt TEXutil contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the texutil.pl script creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files, resulting in a loss of integrity.

References:

Vendor URL: http://www.pragma-ade.com/index.htm Vendor Specific Solution URL: http://www.pragma-ade.com/download-1.htm Security Tracker: 1009661 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-04/0024.html ISS X-Force ID: 15728 CVE-2004-1894 Bugtraq ID: 10042