IZ2553: /tmp/*_messages files are subject to symlink vulnerabilities
|Reported by:||brooks||Owned by:||Dave Love <d.love@…>|
Description (last modified by admin)
[Imported from gridengine issuezilla http://gridengine.sunsource.net/issues/show_bug.cgi?id=2553]
Issue #: 2553 Platform: All Reporter: brooks (brooks) Component: gridengine OS: All Subcomponent: execution Version: current CC: None defined Status: NEW Priority: P3 Resolution: Issue type: DEFECT Target milestone: --- Assigned to: pollinger (pollinger) QA Contact: pollinger URL: * Summary: /tmp/*_messages files are subject to symlink vulnerabilities Status whiteboard: Attachments: Issue 2553 blocks: Votes for issue 2553: Opened: Thu Apr 10 13:48:00 -0700 2008 ------------------------ As far as I can tell, the /tmp/*_messages files deamons use early in startup are created without the exclusive flag. As a result, ordinary users can create symlinks in their place and cause the daemons to write to arbitrary files. The files should either be opened exclusivly or the locations should be changed to a location not writable by ordinary users.
Change History (5)
comment:1 Changed 6 years ago by dlove
- Keywords security added; removed
- Milestone set to 6.2u5.1
- Priority changed from normal to high
- Severity set to major
comment:2 Changed 6 years ago by admin
- Description modified (diff)
- Milestone changed from 8.0.0a to 8.0.0c
Note: See TracTickets for help on using tickets.