XBoard pxboard Insecure Temporary File Creation

2003-12-03T05:15:03
ID OSVDB:2896
Type osvdb
Reporter OSVDB
Modified 2003-12-03T05:15:03

Description

Vulnerability Description

XBoard contains a flaw which insecurely creates a file in /tmp with a predictable file name allowing a symlink attack. A malicious local user could use this flaw to create or overwrite files with the privileges/UID of another user.

Solution Description

Upgrade to version 4.2.7 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by replacing the pxboard script with the one provided by vulnerability reporter.

Short Description

XBoard contains a flaw which insecurely creates a file in /tmp with a predictable file name allowing a symlink attack. A malicious local user could use this flaw to create or overwrite files with the privileges/UID of another user.

References:

Secunia Advisory ID:10351 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2003-12/0033.html ISS X-Force ID: 13895 Bugtraq ID: 9151