Detections
Analytics

FreeBSD : rkhunter -- insecure temporary file creation (f14ad681-5b88-11dc-812d-0011098b2f36)

low Nessus Plugin ID 25982

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

Gentoo reports :

Sune Kloppenborg Jeppesen and Tavis Ormandy of the Gentoo Linux Security Team have reported that the check_update.sh script and the main rkhunter script insecurely creates several temporary files with predictable filenames.

A local attacker could create symbolic links in the temporary files directory, pointing to a valid file somewhere on the filesystem. When rkhunter or the check_update.sh script runs, this would result in the file being overwritten with the rights of the user running the utility, which could be the root user.

Solution

Update the affected package.

See Also

https://security.gentoo.org/glsa/200504-25

http://www.nessus.org/u?7a50ad07

Plugin Details

Severity: Low

ID: 25982

File Name: freebsd_pkg_f14ad6815b8811dc812d0011098b2f36.nasl

Version: 1.15

Type: local

Published: 9/5/2007

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.4

CVSS v2

Risk Factor: Low

Base Score: 2.1

Temporal Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:N

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:rkhunter, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Exploit Available: true

Exploit Ease: No exploit is required

Patch Publication Date: 9/5/2007

Vulnerability Publication Date: 4/26/2005

Reference Information

CVE: CVE-2005-1270

BID: 13399