CVE-2009-0416

Name of the Vulnerable Software and Affected Versions sblim-sfcb version 1.3.2

Description The issue is related to the SSL certificate setup program (genSslCert.sh) in sblim-sfcb, which allows local users to overwrite arbitrary files via a symlink attack on temporary files, including /var/tmp/key.pem, /var/tmp/cert.pem, and /var/tmp/ssl.cnf. This vulnerability is associated with incorrect link resolution before file access, potentially allowing an attacker to access confidential data, compromise its integrity, and cause a denial of service.

Recommendations For version 1.3.2, consider restricting access to the genSslCert.sh program to prevent local users from exploiting the symlink vulnerability until a patch is available. As a temporary workaround, monitor and restrict modifications to the /var/tmp/key.pem, /var/tmp/cert.pem, and /var/tmp/ssl.cnf files to minimize the risk of exploitation.