Bug#659379: [Secure-testing-team] Bug#659379: uzbl: world-readable (and writable!) cookie jar

Henri Salo Sat, 11 Feb 2012 04:51:18 -0800

On Fri, Feb 10, 2012 at 05:09:13PM +0100, Jakub Wilk wrote:
> Package: uzbl
> Version: 0.0.0~git.20100403-3
> Severity: grave
> Tags: security
> Justification: user security hole
> 
> $ ls -ld ~/.local/{,share/{,uzbl/{,cookies.txt}}}
> drwxr-xr-x 3 user users 4096 Feb  9 23:29 /home/user/.local/
> drwxr-xr-x 4 user users 4096 Feb  9 23:29 /home/user/.local/share/
> drwxr-xr-x 2 user users 4096 Feb  9 23:29 /home/user/.local/share/uzbl/
> -rw-rw-rw- 1 user users  732 Feb  9 23:29 
> /home/user/.local/share/uzbl/cookies.txt
> 
> This allows local users to steal cookies (and tamper with them).
> 
> -- 
> Jakub Wilk


Does this security-issue have CVE-identifier? I can request one from 
oss-security mailing list if ID hasn't been assigned.

- Henri Salo



-- 
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#659379: [Secure-testing-team] Bug#659379: uzbl: world-readable (and writable!) cookie jar

Reply via email to