Title: CoolKey PK11IPC1 Insecure Temporary File Creation Vulnerability
Severity: MODERATE
Description:
CoolKey is an application that provides various forms of access (smart card login, single sign-on, secure messaging, and secure email).
CoolKey creates temporary files in an insecure manner.
This issue occurs when CoolKey creates the world-writable file '/tmp//pk11ipc1'.
An attacker with local access could potentially exploit this issue to perform symbolic-link attacks to alter the permissions of an arbitrary attacker-specified file, such as '/etc/shadow'. This could facilitate a complete compromise of the affected computer.
Affected Products:
- CoolKey CoolKey 1.0.0
- CoolKey CoolKey 1.0.1
- RedHat Enterprise Linux 5 server
- RedHat Enterprise Linux Desktop 5 client
- RedHat Enterprise Linux Desktop Workstation 5 client
References:
- CoolKey: CoolKey Homepage
- Red Hat: Red Hat Security Advisory RHSA-2007:0631-4
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
