CWE - CWE-689: Permission Race Condition During Resource Copy (1.6)

Home > CWE List > CWE- Individual Dictionary Definition (1.6)

CWE List
Full Dictionary View
Development View
Research View
Reports

About
Sources
Process
Documents

Community
Related Activities
Discussion List
Research
CWE/SANS Top 25
CWSS

News
Calendar
Free Newsletter

Compatibility
Program
Requirements
Declarations
Make a Declaration

Contact Us
Search the Site

CWE-689: Permission Race Condition During Resource Copy

Permission Race Condition During Resource Copy

Compound Element ID: 689 (Compound Element Base: Composite)

Status: Draft

Description

Description Summary

The product, while copying or cloning a resource, does not set the resource's permissions or access control until the copy is complete, leaving the resource exposed to other spheres while the copy is taking place.

Time of Introduction

Implementation

Applicable Platforms

Languages

Perl

Observed Examples

Reference	Description
CVE-2002-0760	Archive extractor decompresses files with world-readable permissions, then later sets permissions to what the archive specified.
CVE-2005-2174	Product inserts a new object into database before setting the object's permissions, introducing a race condition.
CVE-2006-5214	error file has weak permissions before a chmod is performed.
CVE-2005-2475	Archive permissions issue using hard link.
CVE-2003-0265	database product creates files world-writable before initializing the setuid bits, leading to modification of executables.

Other Notes

This is a general issue, although few subtypes are currently known. The most common examples occur in file archive extraction, in which the product begins the extraction with insecure default permissions, then only sets the final permissions (as specified in the archive) once the copy is complete. The larger the archive, the larger the timing window for the race condition. This weakness has also occurred in some operating system utilities that perform copies of deeply nested directories containing a large number of files.

Weakness Ordinalities

Ordinality	Description
Primary	(where the weakness exists independent of other weaknesses)

Relationships

Nature	Type	ID	Name	View(s) this relationship pertains to
ChildOf	Category	275	Permission Issues	Development Concepts (primary)699
Requires	Weakness Class	362	Race Condition	Research Concepts1000
ChildOf	Weakness Class	668	Exposure of Resource to Wrong Sphere	Research Concepts (primary)1000
Requires	Weakness Class	732	Incorrect Permission Assignment for Critical Resource	Research Concepts1000

Research Gaps

Under-studied. It seems likely that this weakness could occur in any situation in which a complex or large copy operation occurs, when the resource can be made available to other spheres as soon as it is created, but before its initialization is complete.

Content History

Modifications
Modification Date	Modifier	Organization	Source
2008-09-08	CWE Content Team	MITRE	Internal
2008-09-08	updated Applicable Platforms, Relationships, Other Notes, Weakness Ordinalities
2009-03-10	CWE Content Team	MITRE	Internal
2009-03-10	updated Related Attack Patterns

Page Last Updated: October 29, 2009


	CWE is a Software Assurance strategic initiative sponsored by the National Cyber Security Division of the U.S. Department of Homeland Security. This Web site is hosted by The MITRE Corporation. Copyright 2009, The MITRE Corporation. CWE and the CWE logo are trademarks of The MITRE Corporation. Contact cwe@mitre.org for more information.	Privacy policy Terms of use Contact us