Bugzilla – Bug 112925
VUL-0: CVE-2005-2672: sensors: symlink attack possible over pwmconfig
Last modified: 2021-11-03 14:47:19 UTC
Hello Werner, fixing this in STABLE will suffice. CAN-2005-2672 Candidate: CAN-2005-2672 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2672 Reference: BID:14624 Reference: URL:http://www.securityfocus.com/bid/14624 Reference: UBUNTU:USN-172-1 Reference: URL:http://www.ubuntulinux.org/support/documentation/usn/usn-172-1 Reference: CONFIRM:http://secure.netroedge.com/~lm78/cvs/lm_sensors2/CHANGES pwmconfig in LM_sensors before 2.9.1 creates temporary files insecurely, which allows local users to overwrite arbitrary files via a symlink attack on the fancontrol temporary file.
Args ... STABLE uses lm_sensors-2.9.1. Now ... is 2.9.1 secure? Accordingly to your links it is not ... but is this true?
still vulberable. egrep -v '(INTERVAL|FCTEMPS|FCFANS|MAXTEMP|MINTEMP|MINSTART|MINSTOP)' $FCCONFIG >/tmp/fancontrol echo -e "INTERVAL=$INTERVAL\nFCTEMPS=$FCTEMPS\nFCFANS=$FCFANS\nMINTEMP=$MINTEMP\nMAXTEMP=$MAXTEMP\nMINSTART=$MINSTART\nMINSTOP=$MINSTOP" >>/tmp/fancontrol
Created attachment 47528 [details] fixed
see attachment
Thanks!
CVE-2005-2672: CVSS v2 Base Score: 2.1 (AV:L/AC:L/Au:N/C:N/I:P/A:N)