vobcopy 0.5.14 allows local users to append data to an arbitrary file, or create an arbitrary new file, via a symlink attack on the (1) /tmp/vobcopy.bla or (2) /tmp/vobcopy_0.5.14.log temporary file.
The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Vobcopy | Ubuntu | dapper | * |
Vobcopy | Ubuntu | devel | * |
Vobcopy | Ubuntu | edgy | * |
Vobcopy | Ubuntu | feisty | * |
Vobcopy | Ubuntu | gutsy | * |
Vobcopy | Ubuntu | hardy | * |
Vobcopy | Ubuntu | intrepid | * |
Vobcopy | Ubuntu | jaunty | * |
Vobcopy | Ubuntu | karmic | * |