Detections
Analytics
GLSA-200410-18 : Ghostscript: Insecure temporary file use in multiple scripts
high Nessus Plugin ID 15527
Synopsis
The remote Gentoo host is missing one or more security-related patches.Description
The remote host is affected by the vulnerability described in GLSA-200410-18 (Ghostscript: Insecure temporary file use in multiple scripts)The pj-gs.sh, ps2epsi, pv.sh and sysvlp.sh scripts create temporary files in world-writeable directories with predictable names.
Impact :
A local attacker could create symbolic links in the temporary files directory, pointing to a valid file somewhere on the filesystem. When an affected script is called, this would result in the file to be overwritten with the rights of the user running the script, which could be the root user.
Workaround :
There is no known workaround at this time.
Solution
Ghostscript users on all architectures except PPC should upgrade to the latest version:# emerge sync # emerge -pv '>=app-text/ghostscript-esp-7.07.1-r7' # emerge '>=app-text/ghostscript-esp-7.07.1-r7' Ghostscript users on the PPC architecture should upgrade to the latest stable version on their architecture:
# emerge sync # emerge -pv '>=app-text/ghostscript-esp-7.05.6-r2' # emerge '>=app-text/ghostscript-esp-7.05.6-r2'
See Also
Plugin Details
Severity: High
ID: 15527
File Name: gentoo_GLSA-200410-18.nasl
Version: 1.18
Type: local
Family: Gentoo Local Security Checks
Published: 10/21/2004
Updated: 1/6/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: High
Base Score: 7.2
Temporal Score: 5.3
Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:gentoo:linux:ghostscript-esp, cpe:/o:gentoo:linux
Required KB Items: Host/local_checks_enabled, Host/Gentoo/release, Host/Gentoo/qpkg-list
Exploit Ease: No known exploits are available
Patch Publication Date: 10/20/2004
Vulnerability Publication Date: 9/30/2004
Reference Information
CVE: CVE-2004-0967
GLSA: 200410-18