CVE Vulnerabilities

CVE-2007-5718

Improper Link Resolution Before File Access ('Link Following')

Published: Oct 30, 2007 | Modified: Jul 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.9 MEDIUM
AV:L/AC:L/Au:N/C:N/I:C/A:N
RedHat/V2
RedHat/V3
Ubuntu
LOW

vobcopy 0.5.14 allows local users to append data to an arbitrary file, or create an arbitrary new file, via a symlink attack on the (1) /tmp/vobcopy.bla or (2) /tmp/vobcopy_0.5.14.log temporary file.

Weakness

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

Affected Software

Name Vendor Start Version End Version
Debian_linux Debian 3.1 (including) 3.1 (including)
Debian_linux Debian 3.1-r1 (including) 3.1-r1 (including)
Debian_linux Debian 3.2.4 (including) 3.2.4 (including)
Debian_linux Debian 4.0 (including) 4.0 (including)
Vobcopy Ubuntu dapper *
Vobcopy Ubuntu devel *
Vobcopy Ubuntu edgy *
Vobcopy Ubuntu feisty *
Vobcopy Ubuntu gutsy *
Vobcopy Ubuntu hardy *
Vobcopy Ubuntu intrepid *
Vobcopy Ubuntu jaunty *
Vobcopy Ubuntu karmic *

Potential Mitigations

  • Follow the principle of least privilege when assigning access rights to entities in a software system.
  • Denying access to a file can prevent an attacker from replacing that file with a link to a sensitive file. Ensure good compartmentalization in the system to provide protected areas that can be trusted.

References