GLSA-201206-17 : virtualenv: Insecure temporary file usage

The remote host is affected by the vulnerability described in GLSA-201206-17 virtualenv: Insecure temporary file usage The virtualenv.py script in virtualenv does not handle temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite arbitrary files with the...

GLSA-201203-18 : Minitube: Insecure temporary file usage

The remote host is affected by the vulnerability described in GLSA-201203-18 Minitube: Insecure temporary file usage Tom Pruina reported that Minitube does not handle temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite arbitrary files with the privileges...

RHEL 5 : java-1.6.0-openjdk (RHSA-2012:0730)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0730 advisory. - OpenJDK: improper protection of CORBA data models CORBA, 7079902 CVE-2012-1711 - OpenJDK: fontmanager layout lookup code memory corruption...

Fedora 15 : groff-1.21-4.fc15 (2012-8590)

older security fixes : - CVE-2009-5044: insecure temporary file handling in pdfroff - CVE-2009-5080: improper handling of failed attempts to create temporary directories in eqn2graph/pic2graph/grap2graph - CVE-2009-5081: roff2.pl and groffer.pl use easy-to-guess temporary file names Note that...

Fedora 17 : groff-1.21-9.fc17 (2012-8577)

older security fixes - CVE-2009-5044: insecure temporary file handling in pdfroff - CVE-2009-5080: improper handling of failed attempts to create temporary directories in eqn2graph/pic2graph/grap2graph - CVE-2009-5081: roff2.pl and groffer.pl use easy-to-guess temporary file names Note that Tenab...

Fedora 16 : groff-1.21-4.fc16 (2012-8596)

older security fixes : - CVE-2009-5044: insecure temporary file handling in pdfroff - CVE-2009-5080: improper handling of failed attempts to create temporary directories in eqn2graph/pic2graph/grap2graph - CVE-2009-5081: roff2.pl and groffer.pl use easy-to-guess temporary file names Note that...

Gentoo Security Advisory GLSA 201201-11 (fwbuilder)

The remote host is missing updates announced in advisory GLSA 201201-11. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

MySQL < 3.23.50 / 4.0.24 / 4.1.6 / 5.0.3 Insecure Temporary File Creation

The version of MySQL installed on the remote host is older than 3.23.50, 4.0.24, 4.1.6 or 5.0.3. As such, the mysqlaccess script included with it reportedly could be used to read or overwrite arbitrary files via a symlink attack. C Tenable Network Security, Inc. include"compat.inc"; if descriptio...

MySQL < 4.1.2 Insecure Temporary File Creation

The version of MySQL installed on the remote host is earlier than 4.1.2 and reportedly allows a local user to overwrite files via a symlink attack. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid17799; scriptversion"1.4"; scriptcvsdate"Date: 2018/07/16 14:09:12";...

CentOS Update for gfs2-utils CESA-2009:1337 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for dhclient CESA-2009:1154 centos3 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for cman CESA-2009:1341 centos5 i386

Check for the Version of cman OpenVAS Vulnerability Test CentOS Update for cman CESA-2009:1341 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

CentOS Update for rgmanager CESA-2009:1339 centos5 i386

Check for the Version of rgmanager OpenVAS Vulnerability Test CentOS Update for rgmanager CESA-2009:1339 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...

sysstat insecure temporary file usage

The init script sysstat.in in sysstat 5.1.2 up to 7.1.6 creates /tmp/sysstat.run insecurely, which allows local users to execute arbitrary code...

Low: Red Hat Security Advisory: ccs security update

Updated ccs packages that fix one security issue are now available for Red Hat Cluster Suite 4. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available from...

Oracle Solaris 8/9/10 - &#039;flar&#039; Insecure Temporary File Creation

source: https://www.securityfocus.com/bid/41619/info Oracle Solaris is prone to an insecure temporary file creation vulnerability. A local attacker can exploit this issue to overwrite arbitrary files with the privileges of the affected process. This will likely result in denial-of-service...

[SECURITY] [DSA 2063-1] New pmount packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2063-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano June 17, 2010 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2063-1] New pmount packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-2063-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano June 17, 2010 http://www.debian.org/security/faq -...

Ubuntu USN-875-1 (redhat-cluster-suite)

The remote host is missing an update to redhat-cluster-suite announced via advisory USN-875-1. OpenVAS Vulnerability Test $Id: ubuntu8751.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu8751.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-875-1...

gfs2 security update

CentOS Errata and Security Advisory CESA-2009:1337 An updated gfs2-utils package that fixes multiple security issues and various bugs is now available for Red Hat Enterprise Linux 5. This update has been rated as having low security impact by the Red Hat Security Response Team. The gfs2-utils...