Gajim CVE-2012-2093 Insecure Temporary File Creation Vulnerability

http://www.securityfocus.com/bid/53017

Security Info

Bugtraq ID:	53017
Class:	Design Error
CVE:	CVE-2012-2093
Remote:	No
Local:	Yes
Published:	Apr 11 2012 12:00AM
Updated:	Apr 19 2012 08:30AM
Credit:	Nico Golde
Vulnerable:	Gajim Gajim 0 Debian Linux 6.0 sparc Debian Linux 6.0 s/390 Debian Linux 6.0 powerpc Debian Linux 6.0 mips Debian Linux 6.0 ia-64 Debian Linux 6.0 ia-32 Debian Linux 6.0 arm Debian Linux 6.0 amd64 Debian Linux 6.0 amd64

Not Vulnerable:

Security Discussion

Gajim is prone to a vulnerability because it creates temporary files in an insecure manner.

An attacker with local access could potentially exploit this issue to perform symbolic-link attacks.

Successfully mounting a symlink attack may allow the attacker to corrupt sensitive files or gain access to sensitive information. Other attacks may also be possible.

Proof of Concept and Security Exploits

An attacker can use readily available commands to exploit this issue.

Security Solution(s)

Solution:
Updates are available. Please see the references for more information.

Security References(s)

References:

Bug 811651 - (CVE-2012-2093) CVE-2012-2093 gajim (LaTeX module): Insecure creati (Red Hat)
Gajim Homepage (Gajim)

Emagined Security Blog featuring Dr. Eugene Schultz

Secure Web Programming
by Vizual Services