Lucene search
GoogleOSV:DSA-256HistoryFeb 28, 2003 - 12:00 a.m.
mhc - insecure temporary file
2003-02-2800:00:00
Google
osv.dev
8
EPSS
0
Percentile
5.1%
A problem has been discovered in adb2mhc from the mhc-utils package. The
default temporary directory uses a predictable name. This adds a
vulnerability that allows a local attacker to overwrite arbitrary
files the users has write permissions for.
For the stable distribution (woody) this problem has been
fixed in version 0.25+20010625-7.1.
The old stable distribution (potato) does not contain mhc
packages.
For the unstable distribution (sid) this problem has been fixed in
version 0.25+20030224-1.
We recommend that you upgrade your mhc-utils packages.
References
Related
openvas
openvas
Debian: Security Advisory (DSA-256)
2008-01-17 00:00:00
Debian Security Advisory DSA 256-1 (mhc)
2008-01-17 00:00:00
nvd
nvd
CVE-2003-0120
2003-03-07 05:00:00
nessus
nessus
Debian DSA-256-1 : mhc - insecure temporary file
2004-09-29 00:00:00
debiancve
debiancve
CVE-2003-0120
2004-09-01 04:00:00
cvelist
cvelist
CVE-2003-0120
2004-09-01 04:00:00
cve
cve
CVE-2003-0120
2004-09-01 04:00:00