CVE-2013-4136

ext/common/ServerInstanceDir.h in Phusion Passenger gem before 4.0.6 for Ruby allows local users to gain privileges or possibly change the ownership of arbitrary directories via a symlink attack on a directory with a predictable name in /tmp/.

Published: Sep 30, 2013
Updated: May 9, 2024
CVE: CVE-2013-4136
GHSA: GHSA-w6rc-q387-vpgq
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.4
AV:L/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-59

Affected Software
References

Software	From	Fixed in
phusion / passenger	-	4.0.5.x
phusion / passenger	4.0.1	4.0.1.x
phusion / passenger	4.0.2	4.0.2.x
phusion / passenger	4.0.3	4.0.3.x
phusion / passenger	4.0.4	4.0.4.x
passenger	-	4.0.6

http://rhn.redhat.com/errata/RHSA-2013-1136.html
http://www.openwall.com/lists/oss-security/2013/07/16/6
https://code.google.com/p/phusion-passenger/issues/detail?id=910
https://github.com/phusion/passenger/blob/release-4.0.6/NEWS
https://github.com/phusion/passenger/commit/5483b3292cc2af1c83033eaaadec20dba4dcfd9b

Vulnerability Database

289,697

CVE-2013-4136