#VU42328 Link following in Augeas - CVE-2012-0786

Cybersecurity Help s.r.o.

Published: 2013-11-23 | Updated: 2020-08-10

Vulnerability identifier: #VU42328

Vulnerability risk: Medium

CVSSv4.0: 1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2012-0786

CWE-ID: CWE-59

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Augeas
Client/Desktop applications / Software for system administration

Vendor: Red Hat Inc.

Description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augnew file.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Augeas: 0.0.1 - 0.9.0

External links
https://augeas.net/news.html
https://rhn.redhat.com/errata/RHSA-2013-1537.html
https://secunia.com/advisories/55811
https://bugzilla.redhat.com/show_bug.cgi?id=772257
https://github.com/hercules-team/augeas/commit/16387744

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Link following in augeas (Alpine package)

Amazon Linux AMI update for augeas

Multiple vulnerabilities in Augeas