Re: klprfax_filter symlink vulnerability

From: George Staikos (staikosat_private)
Date: Fri Dec 14 2001 - 10:13:55 PST

Next message: Richard Welty: "Re: MSIE may download and run progams automatically"

Previous message: Support Info: "Security Update: [CSSA-2001-042.1] Linux - Local vulerability in OpenSSH"
In reply to: wang yuan: "klprfax_filter symlink vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Friday 14 December 2001 01:14, wang yuan wrote:
> hi,all !
> i'm sorry if this bug has been reported.
> klprfax_filter (kdeutils-2.2-2),is an application to make
> a printer that acts as a fax.
> when using klprfax_filter,it would creat a temp
> file,/tmp/klprfax.filter,but the  temporary file was not
> created safely,this vulnerability could be exploited to
> overwrite arbitrary files!
> just tested on redhat 7.1.

   This was announced by the KDE team on Nov 9.  The solution is to remove 
the suid bit from efax.  It seems to only need it for accessing the lock 
files and the modem.

-- 

George Staikos

Next message: Richard Welty: "Re: MSIE may download and run progams automatically"
Previous message: Support Info: "Security Update: [CSSA-2001-042.1] Linux - Local vulerability in OpenSSH"
In reply to: wang yuan: "klprfax_filter symlink vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Dec 14 2001 - 16:33:18 PST