Full Disclosure mailing list archives
Re: FileCache: tmp file permission vulnerability.
From: Vladimir Lettiev <thecrux () gmail com>
Date: Sat, 3 Apr 2010 10:09:29 +0400
On Thu, Apr 01, 2010 at 11:30:50PM -0400, bugs lists wrote:
FileCache: tmp file permission vulnerability. Larry W. Cashdollar Vapid Labs http://vapid.dhs.org 2/16/2010 Perl Cache-Cache-1.06 is a memory and file caching module for perl. It stores its default file cache in /tmp with world read/write permissions. A local attacker can use this cache to glean information from applications using module. Regardless of weather the transaction is taking place over an encrypted SSL session.
This is documented behaviour. You can override insecure default cache root and umask with options 'cache_root' and 'directory_umask': use Cache::FileCache; use File::Temp qw/ tempdir /; my $cache = new Cache::FileCache( { 'cache_root' => tempdir('CacheXXXXX'), 'directory_umask' => 077, } ); -- Vladimir Lettiev aka crux <theCrux () gmail com> _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- FileCache: tmp file permission vulnerability. bugs lists (Apr 02)
- Re: FileCache: tmp file permission vulnerability. Vladimir Lettiev (Apr 02)
- Re: FileCache: tmp file permission vulnerability. paul . szabo (Apr 02)
- Re: FileCache: tmp file permission vulnerability. Vladimir Lettiev (Apr 02)