seffaflik Symlink Attack Vulnerability Allowing Arbitrary File Overwrite and Insecure Permissions

A vulnerability in the seffaflik package, affecting versions through 0.0.9, allows for symlink attacks due to improper default permissions assigned to the .kimlik and .seffaflik files. The .kimlik file is created with mode 0777, and the .seffaflik file with mode 0775, exposing sensitive information to other local users. Furthermore, the .kimlik file is written without symlink validation, enabling local attackers to overwrite arbitrary files. This vulnerability could lead to information disclosure and denial-of-service conditions.

Impact

Exploitation of this vulnerability exposes secrets in the .kimlik file to other local users, potentially leading to unauthorized access or misuse of sensitive information. The arbitrary file overwrite capability allows for corruption of system files or disruption of application processes, causing a denial-of-service effect.

Remediation

Users can manually adjust the permissions of the .seffaflik directory and the .kimlik file to restrict access. Additionally, it is advisable to avoid using the seffaflik package on multi-user systems.