Title: KFM Insecure TMP File Creation Vulnerability
Severity: LOW
Description:
KFM is the KDE File Manager, included with version 1 of the KDE base package in most Linux installations. KFM is designed as a graphical, easily navigated interface to the Linux Filesystem.
A problem in the KFM package could make it possible for local users to overwrite any file owned by a user of KFM. This is due to insufficient checking of previously existing temporary files and directories by the KFM package.
Upon execution, KFM creates a temporary directory in which to cache content. This temporary directory is created using a name consisting of kfm-cache-<USER ID>. An example would be a user with an id of 1000. The directory would be created using the name kfm-cache-1000. This directory usually caches a set of predictable files.
KFM does not safely check for the existance of this directory prior to using it, and upon needing to use one of the predicted files in the directory, will attempt to place output into the previously made symbolic link, thus overwriting the contents of the linked file, resulting in data corruption or loss of data entirely.
Affected Products:
- S.u.S.E. Linux 7.0.0
- S.u.S.E. Linux 7.0.0 alpha
- S.u.S.E. Linux 7.0.0 ppc
- S.u.S.E. Linux 7.0.0 sparc
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
