CVE-2004-0233

Name of the Vulnerable Software and Affected Versions utempter version 0.5.5

Description The issue allows local users to potentially overwrite arbitrary files via a symlink attack on device names in combination with an application that trusts the utmp or wtmp files. This is due to utempter allowing device names that contain .. (dot dot) directory traversal sequences. The exploitation of this issue may lead to a violation of protected information integrity and can be carried out locally.

Recommendations For utempter version 0.5.5, consider restricting access to the utmp or wtmp files to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using device names that contain .. (dot dot) directory traversal sequences. At the moment, there is no information about a newer version that contains a fix for this vulnerability.