PT-2014-2066 · Fail2Ban · Fail2Ban
Tomasz Papszun
·
Published
2014-06-10
·
Updated
2024-06-15
·
CVE-2009-5023
CVSS v2.0
4.7
Medium
| Vector | AV:L/AC:M/Au:N/C:N/I:C/A:N |
Name of the Vulnerable Software and Affected Versions
Fail2ban versions prior to 0.8.5
Description
The issue allows local users to write to arbitrary files via a symlink attack on temporary files with predictable names in Fail2ban. This can be demonstrated by exploiting the predictability of file names such as /tmp/fail2ban-mail.txt.
Recommendations
For versions prior to 0.8.5, update to version 0.8.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the temporary files in the /tmp directory to minimize the risk of exploitation.
Fix
Link Following
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fail2Ban