Vulnerabilities > CVE-2005-1707 - Unspecified vulnerability in Gentoo Linux Webapp-Config 1.10
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The fn_show_postinst function in Gentoo webapp-config before 1.10-r14 allows local users to overwrite arbitrary files via a symlink attack on the postinst.txt temporary file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Gentoo Webapp-Config 1.10 Insecure File Creation Vulnerability. CVE-2005-1707. Local exploit for linux platform |
id | EDB-ID:25709 |
last seen | 2016-02-03 |
modified | 2005-05-26 |
published | 2005-05-26 |
reporter | Eric Romang |
source | https://www.exploit-db.com/download/25709/ |
title | Gentoo Webapp-Config 1.10 Insecure File Creation Vulnerability |
Nessus
NASL family | Gentoo Local Security Checks |
NASL id | GENTOO_GLSA-200506-13.NASL |
description | The remote host is affected by the vulnerability described in GLSA-200506-13 (webapp-config: Insecure temporary file handling) Eric Romang discovered webapp-config uses a predictable temporary filename while processing certain options, resulting in a race condition. Impact : Successful exploitation of the race condition would allow an attacker to disrupt the operation of webapp-config, or execute arbitrary shell commands with the privileges of the user running webapp-config. A local attacker could use a symlink attack to create or overwrite files with the permissions of the user running webapp-config. Workaround : There is no known workaround at this time. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 18520 |
published | 2005-06-17 |
reporter | This script is Copyright (C) 2005-2019 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/18520 |
title | GLSA-200506-13 : webapp-config: Insecure temporary file handling |
code |
|
References
- http://bugs.gentoo.org/show_bug.cgi?id=91785
- http://secunia.com/advisories/15445
- http://securitytracker.com/id?1014027
- http://www.gentoo.org/security/en/glsa/glsa-200506-13.xml
- http://www.osvdb.org/16746
- http://www.securityfocus.com/bid/13780
- http://www.vupen.com/english/advisories/2005/0809
- http://www.zataz.net/adviso/webapp-config-05182005.txt