Info

Disclosure

Aug 01, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

UnZip contains a flaw that may allow a malicious local user to change permissions of arbitrary files on the system. The issue is triggered via a hard link attack on a file while it is being decompressed. It is possible that the flaw may allow arbitrary file permission modification resulting in a loss of confidentiality and integrity.

Classification

Location: Local Access Required
Attack Type: Race Condition
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Info-ZIP	UnZip	5.52
		5.51
		5.50

References

Bugtraq ID: 14450
Secunia Advisory ID: 16309 16985 17006 17045 17342 17653 25098 40539 40542
SCIP VulDB ID: 1680
CVE ID: 2005-2475 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-08/0024.html
Other Advisory URL: http://blogs.sun.com/security/entry/cve_2005_2475_cve_2008
http://frontal1.mandriva.com/security/advisories?name=MDKSA-2005:197
http://www.debian.org/security/2005/dsa-903
Vendor URL: http://www.info-zip.org/pub/infozip/UnZip.html
Vendor Specific Advisory URL: http://www.trustix.org/errata/2005/0053/
http://www.ubuntu.com/usn/usn-191-1
RedHat RHSA: RHSA-2007:0203

Credit

Imran Ghory - imranghorygmail.com -

Direct URL: http://osvdb.org/18530

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Info-ZIP

UnZip

References

Credit