Lucene search
GoogleOSV:DSA-1326-1HistoryJul 01, 2007 - 12:00 a.m.
fireflier
2007-07-0100:00:00
Google
osv.dev
6
0.0004 Low
EPSS
Percentile
5.1%
Steve Kemp from the Debian Security Audit project discovered that
fireflier-server, an interactive firewall rule creation tool, uses temporary
files in an unsafe manner which may be exploited to remove arbitrary files from
the local system.
For the old stable distribution (sarge) this problem has been fixed in
version 1.1.5-1sarge1.
For the stable distribution (etch) this problem has been fixed in
version 1.1.6-3etch1.
For the unstable distribution (sid) this problem will be fixed shortly.
We recommend that you upgrade your fireflier-server package.
References
Related
securityvulns
securityvulns
openvas
openvas
Debian: Security Advisory (DSA-1326-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 1326-1 (fireflier-server)
2008-01-17 00:00:00
cvelist
cvelist
CVE-2007-2837
2007-07-03 18:00:00
prion
prion
Design/Logic Flaw
2007-07-03 18:30:00
debian
debian
nessus
nessus
Debian DSA-1326-1 : fireflier-server - insecure temporary files
2007-07-02 00:00:00
ubuntucve
ubuntucve
CVE-2007-2837
2007-07-03 00:00:00
nvd
nvd
CVE-2007-2837
2007-07-03 18:30:00
cve
cve
CVE-2007-2837
2007-07-03 18:30:00