Title: Multiple Vendor BSD make /tmp Race Condition Vulnerability
Severity: MODERATE
Description:
There is an exploitable race condition in BSD derived versions of make. The problem lies in the way that make communicates with its children processes when passed the -j parameter. "make" does so by writing shell commands to temporary files in /tmp, which the children process read (and then execute..). In the process of doing this, "make" creates and resuses temporary files several times with known filenames. If the file name being used were to be observed by an attacker, it is possible to write arbitrary commands to these files immediately after legitimate ones are, then have them executed by the child processes if the race is won.
Affected Products:
- FreeBSD FreeBSD 3.4.0
- NetBSD NetBSD 1.4.1 x86
- OpenBSD OpenBSD 2.6.0
References:
- FreeBSD: FreeBSD Security Information
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
