GNU make /tmp Vulnerability

A vulnerability exists in the way GNU make handles being fed Makefile contents via standard in. GNU make will create file in /tmp, without checking to see if they already exist, or it they are in fact symbolic links. A would be attacker could simply create an appropriately named symbolic link, and point it elsewhere on the file system. In turn, they could create files owned by the user running make. If this user is root, it would be possible to obtain root privilege.


 

Privacy Statement
Copyright 2010, SecurityFocus