Bug 911122 (CVE-2013-4216) - CVE-2013-4216 wimax: Log file created with insecure (world-writable) permissions
Summary: CVE-2013-4216 wimax: Log file created with insecure (world-writable) permissions
Status: CLOSED EOL
Alias: CVE-2013-4216
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: Unspecified
OS: Unspecified
low
low
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard: impact=low,public=20130808,reported=2...
Keywords: Reopened, Security
Depends On: 995160
Blocks: 909233
TreeView+ depends on / blocked
 
Reported: 2013-02-14 12:41 UTC by Florian Weimer
Modified: 2019-06-08 19:26 UTC (History)
4 users (show)

(edit)
Clone Of:
(edit)
Last Closed: 2015-02-17 16:48:27 UTC


Attachments (Terms of Use)

Description Florian Weimer 2013-02-14 12:41:13 UTC
In InfraStack/OSDependent/Linux/InfraStackModules/TraceModule/TraceModule.c, function Trace_OpenLogFile, the log file (typically /var/log/wimax/wimaxd.log) is chmod'ed to 0666.  Log files should not be world-writable.  I'm not sure if this log file should even be world-readable (see bug 911121).

It's probably best to restrict permissions on the /var/log/wimax directory, too.

Comment 4 Jan Lieskovsky 2013-08-08 14:45:39 UTC
A security flaw was found in the way Trace module of WiMAX, an user space daemon for the Intel 2400m Wireless WiMAX link, used to set permissions when opening the log file (was created with world-readable / writable permissions). A local attacker could use this flaw to, in an unauthorized way, alter the content of WiMAX daemon log file (possibly leading to un-enforced actions to be performed by system administrator).

Comment 5 Jan Lieskovsky 2013-08-08 16:45:20 UTC
Acknowledgements:

This issue was found by Florian Weimer of Red Hat Product Security Team.

Comment 6 Jan Lieskovsky 2013-08-08 16:47:14 UTC
Created wimax tracking bugs for this issue:

Affects: fedora-all [bug 995160]

Comment 7 Jan Lieskovsky 2013-08-08 16:56:43 UTC
CVE Request:
  http://www.openwall.com/lists/oss-security/2013/08/08/10

Comment 8 Jan Lieskovsky 2013-08-09 07:19:29 UTC
The CVE identifier of CVE-2013-4216 has been assigned to this issue:
  http://www.openwall.com/lists/oss-security/2013/08/08/17

Comment 9 Florian Weimer 2015-02-17 16:48:27 UTC
Only Fedora 19 shipped the wimax packages, and it is now EOL.


Note You need to log in before you can comment on or make changes to this bug.