FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

wine -- information disclosure due to insecure temporary file handling

Affected packages
wine < 20050310

Details

VuXML ID 48a59c96-9c6e-11d9-a040-000a95bc6fae
Discovery 2005-03-13
Entry 2005-03-24

Due to insecure temporary file creation in the Wine Windows emulator, it is possible for any user to read potentially sensitive information from temporary registry files.

When a Win32 application is launched by wine, wine makes a dump of the Windows registry in /tmp with name regxxxxyyyy.tmp , where xxxxxx is the pid in hexadecimal value of the current wine process and yyyy is an integer value usually equal to zero.

regxxxxyyyy.tmp is created with 0644 (-rw-r--r--) permissions. This could represent a security problem in a multi-user environment. Indeed, any local user could access to windows regstry's dump and get sensitive information, like passwords and other private data.

References

CVE Name CVE-2005-0787
Message 20050314135701.30231.qmail@www.securityfocus.com
URL http://bugs.winehq.org/show_bug.cgi?id=2715
URL http://www.securityfocus.com/bid/12791
URL http://www.securitytracker.com/alerts/2005/Mar/1013428.html
URL http://www.zone-h.org/advisories/read/id=7300
URL http://xforce.iss.net/xforce/xfdb/19697