Title: IRIX cron and crontab Predictable /tmp Filename Vulnerability
Severity: MODERATE
Description:
A vulnerability exists in the creation of temporary files, in the crontab program included with IRIX, from SGI. crontab and cron each create predictably named files in /tmp. These appear to be created with the default umask of the system in the case of cron, and the user umask in the case of crontab. This could potentially allow the leaking of sensitive information, or the altering of a crontab while being edited, allowing arbitrary commands to be executed.
As the file names are predictable, one need only watch for the creation of a writable crontab temporary file, and alter its contents.
Affected Products:
- SGI IRIX 6.3.0
- SGI IRIX 6.5.0
- SGI IRIX 6.5.1
- SGI IRIX 6.5.2
- SGI IRIX 6.5.3
- SGI IRIX 6.5.4
- SGI IRIX 6.5.5
- SGI IRIX 6.5.6
- SGI IRIX 6.5.7
- SGI IRIX 6.5.8
- SGI IRIX 6.5.9
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
