CVE-2008-4953

Name of the Vulnerable Software and Affected Versions firehol version 1.256

Description The issue allows local users to overwrite arbitrary files via a symlink attack on temporary files, specifically (1) /tmp/.firehol-tmp-#####-- and (2) /tmp/firehol.conf. The vendor disputes this issue, stating that an attack would require creating a large number of symlinks.

Recommendations For firehol version 1.256, as a temporary workaround, consider restricting access to the temporary files /tmp/.firehol-tmp-#####-- and /tmp/firehol.conf to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.