CVE-2013-2561 : OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a

OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on (1) ibdiagnet.db, (2) ibdiagnet.fdbs, (3) ibdiagnet_ibis.log, (4) ibdiagnet.log, (5) ibdiagnet.lst, (6) ibdiagnet.mcfdbs, (7) ibdiagnet.pkey, (8) ibdiagnet.psl, (9) ibdiagnet.slvl, or (10) ibdiagnet.sm in /tmp/.

Published 2013-11-23 18:55:05

Updated 2019-04-22 17:48:01

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2013-2561

Redhat » Enterprise Linux » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
Matching versions
Openfabrics » Ibutils » Version: 1.5.7
cpe:2.3:a:openfabrics:ibutils:1.5.7:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2013-2561

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 8 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2013-2561

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.3	MEDIUM	AV:L/AC:M/Au:N/C:N/I:C/A:C	3.4	9.2	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2013-2561

CWE-59 Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2013-2561

http://www.securityfocus.com/bid/58335

OpenFabrics ibutils Insecure Temporary File Creation Vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=927430

927430 – (CVE-2013-2561) CVE-2013-2561 ibutils: insecure handling of files in the /tmp directory
http://rhn.redhat.com/errata/RHSA-2013-1661.html

RHSA-2013:1661 - Security Advisory - Red Hat Customer Portal
Vendor Advisory
http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html

Oracle Solaris Bulletin - July 2016

CVEs referencing this url
http://www.openwall.com/lists/oss-security/2013/03/26/4

oss-security - Re: CVE request: ibutils improper use of files in /tmp
http://www.openwall.com/lists/oss-security/2013/03/26/11

oss-security - Re: CVE request: ibutils improper use of files in /tmp
http://www.openwall.com/lists/oss-security/2013/03/26/1

oss-security - Re: CVE request: ibutils improper use of files in /tmp
http://www.openwall.com/lists/oss-security/2013/03/19/8

oss-security - Fwd: CVE requests
http://seclists.org/fulldisclosure/2013/Mar/87

Full Disclosure: OpenFabrics ibutils 1.5.7 /tmp clobbering vulnerability
Exploit

Jump to

Vulnerability Details : CVE-2013-2561

Products affected by CVE-2013-2561

Exploit prediction scoring system (EPSS) score for CVE-2013-2561

CVSS scores for CVE-2013-2561

CWE ids for CVE-2013-2561

References for CVE-2013-2561