CWE-377: Insecure Temporary File

Description

Creating and using insecure temporary files can leave application and system data vulnerable to attack.

Submission Date :

July 19, 2006, midnight

Modification Date :

2023-10-26 00:00:00+00:00

Organization :

MITRE
Example Vulnerable Codes

Example - 1

The following code uses a temporary file for storing intermediate data gathered from the network before it is processed.


FILE* tmp = fopen(filename,"wb+");while((recv(sock,recvbuf,DATA_SIZE, 0) > 0)&(amt!=0)) amt = fwrite(recvbuf,1,DATA_SIZE,tmp);
if (tmpnam_r(filename)) {}...

This otherwise unremarkable code is vulnerable to a number of different attacks because it relies on an insecure method for creating temporary files. The vulnerabilities introduced by this function and others are described in the following sections. The most egregious security problems related to temporary file creation have occurred on Unix-based operating systems, but Windows applications have parallel risks. This section includes a discussion of temporary file creation on both Unix and Windows systems. Methods and behaviors can vary between systems, but the fundamental risks introduced by each are reasonably constant.

Related Weaknesses

This table shows the weaknesses and high level categories that are related to this weakness. These relationships are defined to give an overview of the different insight to similar items that may exist at higher and lower levels of abstraction.

CWE-378: Creation of Temporary File With Insecure Permissions
Go to
CWE-379: Creation of Temporary File in Directory with Insecure Permissions
Go to
CWE-668: Exposure of Resource to Wrong Sphere
Go to

Visit http://cwe.mitre.org/ for more details.