ID CVE-2006-1695
Summary The fbgs script in the fbi package 2.01-1.4, when the TMPDIR environment variable is not defined, allows local users to overwrite arbitrary files via a symlink attack on temporary files in /var/tmp/fbps-[PID].
References
Vulnerable Configurations
  • cpe:2.3:a:fbida:fbida:2.01
    cpe:2.3:a:fbida:fbida:2.01
  • cpe:2.3:a:fbida:fbida:2.02
    cpe:2.3:a:fbida:fbida:2.02
  • cpe:2.3:a:fbida:fbida:2.03
    cpe:2.3:a:fbida:fbida:2.03
CVSS
Base: 1.2 (as of 11-04-2006 - 14:34)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL HIGH NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
nessus via4
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-200604-13.NASL
    description The remote host is affected by the vulnerability described in GLSA-200604-13 (fbida: Insecure temporary file creation) Jan Braun has discovered that the 'fbgs' script provided by fbida insecurely creates temporary files in the '/var/tmp' directory. Impact : A local attacker could create links in the temporary file directory, pointing to a valid file somewhere on the filesystem. When an affected script is called, this could result in the file being overwritten with the rights of the user running the script. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2018-07-11
    plugin id 21278
    published 2006-04-26
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21278
    title GLSA-200604-13 : fbida: Insecure temporary file creation
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-1068.NASL
    description Jan Braun discovered that the fbgs script of fbi, an image viewer for the framebuffer environment, creates an directory in a predictable manner, which allows denial of service through symlink attacks.
    last seen 2019-02-21
    modified 2018-08-09
    plugin id 22610
    published 2006-10-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22610
    title Debian DSA-1068-1 : fbi - insecure temporary file
  • NASL family SuSE Local Security Checks
    NASL id SUSE_FBI-1915.NASL
    description The fbgs program did not activate security options in the postscript interpreter due to a typo (CVE-2006-3119). fbgs also used a temporary directory with predictable name (CVE-2006-1695).
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 27212
    published 2007-10-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27212
    title openSUSE 10 Security Update : fbi (fbi-1915)
refmap via4
bid 17436
confirm http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=361370
debian DSA-1068
gentoo GLSA-200604-13
secunia
  • 19559
  • 19766
  • 20166
  • 21459
suse SUSE-SR:2006:019
vupen ADV-2006-1281
xf fbida-fbgs-tmpdir-symlink(25729)
Last major update 07-03-2011 - 21:33
Published 11-04-2006 - 06:02
Last modified 19-07-2017 - 21:30
Back to Top