Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0988

Overview

Vulnerability Score 3.7 3.7
CVE Id CVE-2005-0988
Last Modified 07 Mar 2011 09:20:55
Published 02 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2005-0988

Summary

Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.

Vulnerable Systems

Operating System

  • Freebsd 4.0

  • Freebsd 4.1

  • Freebsd 4.1.1

  • Freebsd 4.10

  • Freebsd 4.11

  • Freebsd 4.2

  • Freebsd 4.3

  • Freebsd 4.4

  • Freebsd 4.5

  • Freebsd 4.6

  • Freebsd 4.6.2

  • Freebsd 4.7

  • Freebsd 4.8

  • Freebsd 4.9

  • Freebsd 5.0

  • Freebsd 5.1

  • Freebsd 5.2

  • Freebsd 5.2.1

  • Freebsd 5.3

  • Freebsd 5.4

  • Gentoo Linux

  • Redhat Enterprise Linux 2.1

  • Redhat Enterprise Linux 3.0

  • Redhat Enterprise Linux 4.0

  • Redhat Enterprise Linux Desktop 3.0

  • Redhat Enterprise Linux Desktop 4.0

  • Redhat Linux Advanced Workstation 2.1

  • Trustix Secure Linux 2.0

  • Trustix Secure Linux 2.1

  • Trustix Secure Linux 2.2

  • Turbolinux Appliance Server 1.0 Hosting

  • Turbolinux Appliance Server 1.0 Workgroup

  • Turbolinux Desktop 10.0

  • Turbolinux Home

  • Turbolinux Server 10.0

  • Turbolinux Server 7.0

  • Turbolinux Server 8.0

  • Turbolinux Workstation 7.0

  • Turbolinux Workstation 8.0

  • Ubuntu Linux 4.1

  • Ubuntu Linux 5.04

Application

  • Gnu Gzip 1.2.4

  • Gnu Gzip 1.2.4a

  • Gnu Gzip 1.3.3


References

CERT - TA06-214A

BID - 12996

VUPEN - ADV-2006-3101

BID - 19289

BUGTRAQ - 20050404 gzip TOCTOU file-permissions vulnerability

OSVDB - 15487

DEBIAN - DSA-752

SUNALERT - 101816

SLACKWARE - SSA:2006-262

SECUNIA - 22033

SECUNIA - 21253

SECUNIA - 18100

REDHAT - RHSA-2005:357

APPLE - APPLE-SA-2006-08-01

SCO - SCOSA-2005.58

Related Patches

Apple 2006-08-01 Security Update 2006-004 Mac OS X 10.4.7 Client (PPC)

Apple 2006-08-01 Security Update 2006-004 Mac OS X 10.4.7 Client (Intel)


Last Updated: 27 May 2016 10:40:00