Vulnerabilities > CVE-2004-0970 - Unspecified vulnerability in GNU Gzip 1.2.4A
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN gnu
nessus
Summary
The (1) gzexe, (2) zdiff, and (3) znew scripts in the gzip package, as used by other packages such as ncompress, allows local users to overwrite files via a symlink attack on temporary files. NOTE: the znew vulnerability may overlap CVE-2003-0367.
Nessus
NASL family Debian Local Security Checks NASL id DEBIAN_DSA-588.NASL description Trustix developers discovered insecure temporary file creation in supplemental scripts in the gzip package which may allow local users to overwrite files via a symlink attack. last seen 2020-06-01 modified 2020-06-02 plugin id 15686 published 2004-11-10 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/15686 title Debian DSA-588-1 : gzip - insecure temporary files NASL family Mandriva Local Security Checks NASL id MANDRAKE_MDKSA-2004-142.NASL description The Trustix developers found some insecure temporary file creation problems in the zdiff, znew, and gzeze supplemental scripts in the gzip package. These flaws could allow local users to overwrite files via a symlink attack. A similar problem was fixed last year (CVE-2003-0367) in which this same problem was found in znew. At that time, Mandrakesoft also used mktemp to correct the problems in gzexe. This update uses mktemp to handle temporary files in the zdiff script. last seen 2020-06-01 modified 2020-06-02 plugin id 15915 published 2004-12-07 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/15915 title Mandrake Linux Security Advisory : gzip (MDKSA-2004:142)
References
- http://secunia.com/advisories/13131
- http://secunia.com/advisories/13131
- http://www.debian.org/security/2004/dsa-588
- http://www.debian.org/security/2004/dsa-588
- http://www.securityfocus.com/bid/11288
- http://www.securityfocus.com/bid/11288
- http://www.trustix.org/errata/2004/0050
- http://www.trustix.org/errata/2004/0050
- http://www.zataz.net/adviso/ncompress-09052005.txt
- http://www.zataz.net/adviso/ncompress-09052005.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17583
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17583