CVE-2006-0512

2006-02-0211:02:00

Debian Security Bug Tracker

security-tracker.debian.org

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON

PADL MigrationTools 46 creates temporary files insecurely, which allows local users to overwrite arbitrary files via a symlink attack on the temporary files, which are not properly created by (1) migrate_all_online.sh, (2) migrate_all_offline.sh, (3) migrate_all_netinfo_online.sh, (4) migrate_all_netinfo_offline.sh, (5) migrate_all_nis_online.sh, (6) migrate_all_nis_offline.sh, (7) migrate_all_nisplus_online.sh, and (8) migrate_all_nisplus_offline.sh.

OSVersionArchitecturePackageVersionFilename
Debian12allmigrationtools< 46-2.1migrationtools_46-2.1_all.deb
Debian11allmigrationtools< 46-2.1migrationtools_46-2.1_all.deb
Debian10allmigrationtools< 46-2.1migrationtools_46-2.1_all.deb
Debian999allmigrationtools< 46-2.1migrationtools_46-2.1_all.deb
Debian13allmigrationtools< 46-2.1migrationtools_46-2.1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	migrationtools	< 46-2.1	migrationtools_46-2.1_all.deb
Debian	11	all	migrationtools	< 46-2.1	migrationtools_46-2.1_all.deb
Debian	10	all	migrationtools	< 46-2.1	migrationtools_46-2.1_all.deb
Debian	999	all	migrationtools	< 46-2.1	migrationtools_46-2.1_all.deb
Debian	13	all	migrationtools	< 46-2.1	migrationtools_46-2.1_all.deb