KDE DCOPServer Insecure Temporary File Privilege Escalation

2004-08-11T04:53:53
ID OSVDB:8590
Type osvdb
Reporter Colin Phipps(cph@cph.demon.co.uk)
Modified 2004-08-11T04:53:53

Description

Vulnerability Description

KDE DCOPServer contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is due to the DCOPServer not creating temporary files in a secure manner. This may allow an attacker to use a symlink style of attack to gain access to user credentials causing a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, KDE has released a patch to address this vulnerability.

Short Description

KDE DCOPServer contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is due to the DCOPServer not creating temporary files in a secure manner. This may allow an attacker to use a symlink style of attack to gain access to user credentials causing a loss of integrity.

References:

Vendor Specific Advisory URL Security Tracker: 1010932 Secunia Advisory ID:12276 Secunia Advisory ID:12465 Secunia Advisory ID:12343 Secunia Advisory ID:12284 Secunia Advisory ID:12495 Secunia Advisory ID:12521 Related OSVDB ID: 8589 Other Advisory URL: http://security.gentoo.org/glsa/glsa-200408-13.xml Other Advisory URL: http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.440345 Other Advisory URL: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=261386 Other Advisory URL: http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:086 Other Advisory URL: http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000864 CVE-2004-0690