Rapid7 Vulnerability & Exploit Database

RHSA-2000:123: New ed packages available

Back to Search

RHSA-2000:123: New ed packages available

Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
01/09/2001
Created
07/25/2018
Added
10/28/2005
Modified
07/04/2017

Description

The ed editor used files in /tmp in an insecure fashion. It was possible for local users to exploit this vulnerability to modify files that they normally could not and gain elevated privilege.

The ed executable creates files in /tmp with predictable names. By using various symlink attacks, it is possible to have ed write to files it should not, change the permissions of various files, etc.

Solution(s)

  • redhat-upgrade-ed

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;