Candidate: CVE-2013-1427
PublicDate: 2013-03-21 17:55:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1427
Description:
 The configuration file for the FastCGI PHP support for lighttpd before
 1.4.28 on Debian GNU/Linux creates a socket file with a predictable name in
 /tmp, which allows local users to hijack the PHP control socket and perform
 unauthorized actions such as forcing the use of a different version of PHP
 via a symlink attack or a race condition.
Ubuntu-Description: 
Notes: 
 jdstrand> socket file was /tmp/php.socket. This should be protected by symlink
  restrictions in Ubuntu 11.10 and higher
Bugs: 
Priority: low
Discovered-by: Stefan Bühler
Assigned-to: 
CVSS: 

Priority_lighttpd_lucid: medium
Tags_lighttpd: symlink-restriction
Patches_lighttpd:
 vendor: http://www.debian.org/security/2013/dsa-2649
upstream_lighttpd: released (1.4.31-4)
hardy_lighttpd: ignored (reached end-of-life)
lucid_lighttpd: ignored (reached end-of-life)
oneiric_lighttpd: ignored (reached end-of-life)
precise_lighttpd: ignored (reached end-of-life)
precise/esm_lighttpd: DNE (precise was needed)
quantal_lighttpd: ignored (reached end-of-life)
raring_lighttpd: ignored (reached end-of-life)
saucy_lighttpd: ignored (reached end-of-life)
trusty_lighttpd: not-affected (1.4.33-1+nmu2ubuntu2)
trusty/esm_lighttpd: DNE (trusty was not-affected [1.4.33-1+nmu2ubuntu2])
utopic_lighttpd: not-affected (1.4.33-1+nmu2ubuntu2)
vivid_lighttpd: not-affected (1.4.33-1+nmu2ubuntu2)
vivid/stable-phone-overlay_lighttpd: DNE
vivid/ubuntu-core_lighttpd: DNE
wily_lighttpd: not-affected (1.4.33-1+nmu2ubuntu2)
xenial_lighttpd: not-affected (1.4.33-1+nmu2ubuntu2)
yakkety_lighttpd: not-affected (1.4.33-1+nmu2ubuntu2)
zesty_lighttpd: not-affected (1.4.33-1+nmu2ubuntu2)
devel_lighttpd: not-affected (1.4.33-1+nmu2ubuntu2)