CVE-2006-5851 in OpenBaseinfo

Summary

by MITRE

openexec in OpenBase SQL before 10.0.1 allows local users to create arbitrary files via a symlink attack on the /tmp/output file, a different vulnerability than CVE-2006-5328.

Be aware that VulDB is the high quality source for vulnerability data.

Analysis

by VulDB Data Team • 04/27/2026

The vulnerability identified as CVE-2006-5851 affects the openexec functionality within OpenBase SQL versions prior to 10.0.1, representing a significant security flaw that enables local attackers to manipulate the file system through symbolic link manipulation. This issue specifically targets the temporary file handling mechanism used by the application when creating the /tmp/output file, creating a path traversal and file creation vulnerability that can be exploited by malicious users with local access to the system.

The technical exploitation of this vulnerability relies on a classic symlink attack pattern where an attacker creates a symbolic link with the name /tmp/output that points to a target file or directory outside the intended scope. When the openexec function attempts to write to this location, it follows the symbolic link and creates or modifies files in unintended locations, potentially allowing privilege escalation or data corruption. This flaw demonstrates poor input validation and insecure temporary file creation practices that violate fundamental security principles. The vulnerability is classified under CWE-377 as insecure temporary file creation and is related to CWE-59 as improper link resolution, both of which are well-documented weaknesses in software security design.

From an operational impact perspective, this vulnerability represents a serious threat to system integrity as local users can leverage it to create arbitrary files with potentially elevated privileges. The attack vector is particularly concerning because it requires only local access to the system, making it accessible to users who may not have administrative privileges but can still execute malicious code through the symbolic link manipulation. This type of vulnerability can be exploited to overwrite critical system files, create backdoor access points, or establish persistent access to the compromised system. The vulnerability is distinct from CVE-2006-5328, indicating that multiple similar weaknesses exist within the same software component, suggesting a broader architectural issue with temporary file handling in the application.

Security practitioners should consider this vulnerability in the context of the MITRE ATT&CK framework, specifically under the techniques related to privilege escalation and persistence. The attack pattern aligns with T1068 for local privilege escalation and T1546 for creating or modifying system processes. Organizations should implement immediate mitigations including upgrading to OpenBase SQL version 10.0.1 or later, where this vulnerability has been addressed through proper temporary file handling mechanisms. Additional defensive measures include restricting write permissions on temporary directories, implementing proper file access controls, and monitoring for suspicious symbolic link creation activities. The vulnerability highlights the importance of secure coding practices and proper file system access controls, particularly when dealing with temporary file operations that could be manipulated by local users.

Reservation

11/09/2006

Disclosure

11/09/2006

Moderation

accepted

Entry

VDB-33227

CPE

ready

Exploit

Download

EPSS

0.00743

KEV

no

Activities

very low

Sources

Do you know our Splunk app?

Download it now for free!