crip Insecure Temporary File Creation

2005-06-30T12:16:14
ID OSVDB:17632
Type osvdb
Reporter Justin Rye()
Modified 2005-06-30T12:16:14

Description

Vulnerability Description

crip contains a flaw that may allow a malicious local user to overwrite or create arbitrary files on the system. The issue is due to crip creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files, resulting in a loss of integrity.

Solution Description

Upgrade to crip version 3.5-1sarge2 or higher, for Debian GNU/Linux 3.1 (sarge), as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

crip contains a flaw that may allow a malicious local user to overwrite or create arbitrary files on the system. The issue is due to crip creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files, resulting in a loss of integrity.

References:

Vendor URL: http://bach.dynet.com/crip/ Secunia Advisory ID:15882 Secunia Advisory ID:15878 Secunia Advisory ID:16413 Other Advisory URL: http://www.debian.org/security/2005/dsa-773 Other Advisory URL: http://www.niscc.gov.uk/niscc/docs/br-20050701-00535.html?lang=en Other Advisory URL: http://www.debian.org/security/2005/dsa-733 ISS X-Force ID: 21223 FrSIRT Advisory: ADV-2005-0916 CVE-2005-0393 Bugtraq ID: 14105