GNU ed tmpfile Symlink Arbitrary File Overwrite

2000-12-11T00:00:00
ID OSVDB:6491
Type osvdb
Reporter Patrik Birgersson(), Christer Öberg()
Modified 2000-12-11T00:00:00

Description

Vulnerability Description

GNU ed contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when a user creates a symlink to a temporary file and the system is halted before the file is saved. This flaw may lead to a loss of integrity and availability.

Solution Description

Upgrade to version 0.2-19 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

GNU ed contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when a user creates a symlink to a temporary file and the system is halted before the file is saved. This flaw may lead to a loss of integrity and availability.

References:

Vendor URL: http://www.gnu.org/software/ed/ed.html Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Secunia Advisory ID:12780 RedHat RHSA: RHSA-2000:123-01 Other Advisory URL: http://security.gentoo.org/glsa/glsa-200410-07.xml Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2000-12/0132.html Mail List Post: http://archives.neohapsis.com/archives/apps/freshmeat/2006-11/0013.html ISS X-Force ID: 5723 CVE-2000-1137 Bugtraq ID: 2095