CVE-2013-4259

Name of the Vulnerable Software and Affected Versions Ansible versions prior to 1.2.3

Description The issue allows local users to redirect a ssh session via a symlink attack on a socket file with a predictable name in /tmp/. This occurs when using ControlPersist in the runner/connection plugins/ssh.py module.

Recommendations For versions prior to 1.2.3, update to version 1.2.3 or later to resolve the issue. As a temporary workaround, consider disabling the use of ControlPersist until a patch is available. Restrict access to the /tmp/ directory to minimize the risk of exploitation. Avoid using predictable names for socket files in the /tmp/ directory until the issue is resolved.