Info

Disclosure

Jul 04, 2005

Discovery

May 26, 2005

Dates

Exploit

Unknown

Solution

Unknown

Description

log4sh contains a flaw that may allow a malicious local user to overwrite or create arbitrary files on the system. The issue is due to the script creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files, resulting in a loss of integrity.

Classification

Location: Local Access Required
Attack Type: Race Condition
Impact: Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Upgrade to version 1.2.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Kate Ward	log4sh	1.2.5
		1.2.4
		1.2.3

References

Security Tracker: 1014374
Bugtraq ID: 14140
Secunia Advisory ID: 15899
CVE ID: 2005-1915 (see also: NVD) 2005-2133 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-07/0051.html
Vendor Specific News/Changelog Entry: http://bugs.gentoo.org/show_bug.cgi?id=94069
http://sourceforge.net/project/shownotes.php?release_id=353022
Vendor URL: http://forestent.com/products/log4sh/
Other Advisory URL: http://www.zataz.net/adviso/log4sh-06092005.txt

Credit

Eric Romang - eromangzataz.net - ZATAZ Audit

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Kate Ward

log4sh

References

Credit