• IDP Daily Update #1321
  posted: 12/02/08
  
• NSM Daily Update #1321
  posted: 12/02/08
  
• Deep Inspection 5.3r5 and above, 5.4, 6.0 #1321
  posted: 12/02/08
  
• Deep Inspection 5.1, 5.2, 5.3r4 and below #1300
  posted: 12/02/08
  
• Deep Inspection 5.0 #1132
  posted: 04/01/08
  
• Antivirus
  posted: 12/01/08

Text Size:        

• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: gdrae Insecure Temporary File Creation Vulnerability

Severity: LOW

Description:

The 'gdrae' program is a standalone graphical user interface (GUI) that allows users to query the Real Academia Espanola dictionary.

The application creates temporary files in an insecure manner.

The issue occurs because the 'gdrae' script creates files in an insecure manner. An attacker with local access could potentially exploit this issue to perform symlink attacks, overwriting arbitrary files in the context of the affected application.

Successfully mounting a symlink attack may allow the attacker to delete or corrupt sensitive files, which may result in a denial of service. Other attacks may also be possible.

This issue affects gdrae 0.1; other versions may also be affected.

Affected Products:

• Alejandro Garrido Mota gdrae 0.1
• Debian Linux 4.0
• Debian Linux 4.0 alpha
• Debian Linux 4.0 amd64
• Debian Linux 4.0 arm
• Debian Linux 4.0 hppa
• Debian Linux 4.0 ia-32
• Debian Linux 4.0 ia-64
• Debian Linux 4.0 m68k
• Debian Linux 4.0 mips
• Debian Linux 4.0 mipsel
• Debian Linux 4.0 powerpc
• Debian Linux 4.0 s/390
• Debian Linux 4.0 sparc

References:

• Dmitry E. Oboukhov: Insecure tmp files in Debian packages
• Dmitry E. Oboukhov: The possibility of attack with the help of symlinks in some Debian packages
• Alejandro Garrido Mota: gdrae Debian Page