Description
OpenBase SQL 10.0 and earlier, as used in Apple Xcode 2.2 2.2 and earlier and possibly other products, allows local users to create arbitrary files via a symlink attack on the simulation.sql file.
Affected products
- Apple / Xcode2.2
- openbase_international_ltd / openbase10.0
- openbase_international_ltd / openbase7.0.15 – 7.0.15
- openbase_international_ltd / openbase8.0.4 – 8.0.4
- openbase_international_ltd / openbase9.1.5 – 9.1.5
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/22390
- VENDOR_ADVISORYhttp://secunia.com/advisories/27441
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2007/3665
- MISChttp://www.securitytracker.com/id?1018872
- MAILING_LISThttp://lists.apple.com/archives/security-announce/2007/Oct/msg00001.html
- MISChttp://www.securityfocus.com/bid/20562
- MISChttp://www.digitalmunition.com/DMA%5B2006-1016a%5D.txt
- MISChttp://www.digitalmunition.com/Xcode_OpenBase_createfile.pl