ID CVE-2005-3342
Summary noweb 2.10c and earlier allows local users to overwrite arbitrary files via symlink attacks on temporary files in (1) lib/toascii.nw and (2) shell/roff.mm.
References
Vulnerable Configurations
  • cpe:2.3:a:norman_ramsey:noweb:2.10c
    cpe:2.3:a:norman_ramsey:noweb:2.10c
  • cpe:2.3:a:norman_ramsey:noweb:2.9a
    cpe:2.3:a:norman_ramsey:noweb:2.9a
CVSS
Base: 1.2 (as of 28-02-2006 - 22:25)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL HIGH NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
nessus via4
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-968.NASL
    description Javier Fernandez-Sanguino Pena from the Debian Security Audit project discovered that a script in noweb, a web like literate-programming tool, creates a temporary file in an insecure fashion.
    last seen 2019-02-21
    modified 2018-08-10
    plugin id 22834
    published 2006-10-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22834
    title Debian DSA-968-1 : noweb - insecure temporary file
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-254-1.NASL
    description Javier Fernandez-Sanguino Pena discovered that noweb scripts created temporary files in an insecure way. This could allow a symlink attack to create or overwrite arbitrary files with the privileges of the user running noweb. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-08-15
    plugin id 21062
    published 2006-03-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21062
    title Ubuntu 4.10 / 5.04 / 5.10 : noweb vulnerability (USN-254-1)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-200602-14.NASL
    description The remote host is affected by the vulnerability described in GLSA-200602-14 (noweb: Insecure temporary file creation) Javier Fernandez-Sanguino has discovered that the lib/toascii.nw and shell/roff.mm scripts insecurely create temporary files with predictable filenames. Impact : A local attacker could create symbolic links in the temporary file directory, pointing to a valid file somewhere on the filesystem. When an affected script is called, this would result in the file being overwritten with the rights of the user running the script. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2018-08-10
    plugin id 20980
    published 2006-02-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=20980
    title GLSA-200602-14 : noweb: Insecure temporary file creation
refmap via4
bid 16610
debian DSA-968
gentoo GLSA-200602-14
secunia
  • 18809
  • 18812
  • 18967
  • 19027
ubuntu USN-254-1
vupen ADV-2006-0547
Last major update 07-03-2011 - 21:26
Published 31-12-2005 - 00:00
Back to Top