Chm2pdf Insecure Temporary File Creation Or DoS Vulnerability Network Vulnerability

Summary

This host is installed with chm2pdf and is prone to Insecure Temporary File Creation or Denial of Service Vulnerability.

Impact

Successful exploitation will allow local users to delete arbitrary files via symlink attack or corrupt sensitive files, which may also result in a denial of service. Impact Level: Application

Solution

Upgrade to higher version or Apply patches from, http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=20 filename=chm2pdf_nmu.diff att=1 bug=501959 ****** NOTE: Please ignore this warning if already patch is applied. ******

Insight

The vulnerability is due to following, - error in .chm file in /tmp/chm2pdf/orig and /tmp/chm2pdf/work temporary directories. - uses temporary files in directories with fixed names.

Affected

chm2pdf version prior to 0.9.1 on Debian

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=501959
http://secunia.com/advisories/32257/
http://www.openwall.com/lists/oss-security/2008/12/01/5

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-5298, CVE-2008-5299
CVSS Base Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Avahi Denial of Service Vulnerability
ClamAV 'parseicon()' Denial Of Service Vulnerability
CUPS IPP Packets Processing Denial of Service Vulnerability
DoSable squid proxy server
Firefox Browser Libxul Memory Leak Remote DoS Vulnerability - Linux

chm2pdf Insecure Temporary File Creation or DoS Vulnerability

Take action and discover your vulnerabilities