FreeBSD : unzip -- permission race vulnerability (9750cf22-216d-11da-bc01-000e0c2e438a)

Low Nessus Plugin ID 21480


The remote FreeBSD host is missing one or more security-related updates.


Imran Ghory reports a vulnerability within unzip. The vulnerability is caused by a race condition between extracting an archive and changing the permissions of the extracted files. This would give an attacker enough time to remove a file and hardlink it to another file owned by the user running unzip. When unzip changes the permissions of the file it could give the attacker access to files that normally would not have been accessible for others.


Update the affected packages.

See Also

Plugin Details

Severity: Low

ID: 21480

File Name: freebsd_pkg_9750cf22216d11dabc01000e0c2e438a.nasl

Version: $Revision: 1.12 $

Type: local

Published: 2006/05/13

Modified: 2013/06/22

Dependencies: 12634

Risk Information

Risk Factor: Low


Base Score: 1.2

Temporal Score: 1

Vector: CVSS2#AV:L/AC:H/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:F/RL:OF/RC:ND

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:ko-unzip, p-cpe:/a:freebsd:freebsd:unzip, p-cpe:/a:freebsd:freebsd:zh-unzip, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2005/09/13

Vulnerability Publication Date: 2005/08/02

Reference Information

CVE: CVE-2005-2475

BID: 14450