Symlink attack due to predictable tmp folder names in npm

Do your applications use this vulnerable package? Test your applications

Overview

npm is a package manager for JavaScript. Affected versions of the package are vulnerable to Symlink attack due to predictable tmp folder names, which were named /tmp/npm-$PID. An attacker waiting for a process named npm- to load could then go to the folder and arbitrarily change the files in the tmp folder.

Remediation

Upgrade npm to version 1.3.3 or higher.

References

GitHub Issue
GitHub Commit
OSS Security

Attack Vector

Local
Attack Complexity

High
Privileges Required

Low
User Interaction

None
Scope

Unchanged
Confidentiality

None
Integrity

Low
Availability

Low

Credit: Daniel Kahn Gillmor
CVE: CVE-2013-4116 CVE-2017-16017
CWE: CWE-377
Snyk ID: npm:npm:20130708
Disclosed: 07 Jul, 2013
Published: 13 Feb, 2017

Symlink attack due to predictable tmp folder names
Affecting npm package, versions <1.3.3

Overview

Remediation

References

CVSS Score

Symlink attack due to predictable tmp folder names Affecting npm package, versions <1.3.3

Overview

Remediation

References

Symlink attack due to predictable tmp folder names
Affecting npm package, versions <1.3.3