DHIS Tools register-q.sh Symlink Arbitrary File Overwrite

2005-12-27T09:18:36
ID OSVDB:21935
Type osvdb
Reporter Javier Fernandez-Sanguino Pena(jfs@computer.org)
Modified 2005-12-27T09:18:36

Description

Vulnerability Description

DHIS Tools contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the script 'register-q.sh' creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files, resulting in a loss of integrity.

Solution Description

Debian users can upgrade to dhis-tools-dns version 5.0-3sarge1 or higher for the stable distribution (sarge), or version 5.0-5 for the unstable distribution (sid), as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

DHIS Tools contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the script 'register-q.sh' creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files, resulting in a loss of integrity.

References:

Vendor Specific Advisory URL Secunia Advisory ID:18228 Secunia Advisory ID:18227 Related OSVDB ID: 21934 CVE-2005-3341