Rapid7 Vulnerability & Exploit Database

SuSE 8.1 security update for aaa_base

Back to Search

SuSE 8.1 security update for aaa_base

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
11/01/2004
Created
07/25/2018
Added
11/01/2004
Modified
11/18/2015

Description

The system is missing one or more SuSE security patches. This updates fixes several /tmp file removal race problems in aaa_base: - The suse.de-clean-vi was not race free and could be used by a local attacker to remove any file on the system. - The safe-rm script used for safe /tmp file removal could be tricked by a local attacker with a symlink attack to remove any file in the filesystem due to a very narrow race in bash directory handling. - The initial tmp file cleaning script could be tricked by a local attacker to delete any file on the system with the agent substring "agent" in its name. Thanks to Stefan Nordhausen for reporting this problems to us!

Solution(s)

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;