397 matches found
KDE KFM creates temporary files insecurely
Overview KDE's kfm creates and uses temporary cache directories insecurely. Description kfm, the KDE File Manager, creates a cache directory for each user. This directory is placed in /tmp and predictably named, based on the UID. These directories are created without checking for correct ownershi...
[SECURITY] [DSA-046-1] exuberant-ctags uses insecure temporary files
-----BEGIN PGP SIGNED MESSAGE----- - ------------------------------------------------------------------------ Debian Security Advisory DSA-046-1 [email protected] http://www.debian.org/security/ Wichert Akkerman April 15, 2001 -...
[SECURITY] [DSA-046-1] exuberant-ctags uses insecure temporary files
Package : exuberant-ctags Problem type : insecure temporary files Debian-specific: no Colin Phipps discovered that the exuberant-ctags packages as distributed with Debian GNU/Linux 2.2 creates temporary files insecurely. This has been fixed in version 1:3.2.4-0.1 of the Debian package, and upstre...
Дырка в sgml-tools (insecure temp files)
Проблема временных файлов...
Security Advisory: FreeBSD-SA-01:13.sort
============================================================================= FreeBSD-SA-01:13 Security Advisory FreeBSD, Inc. Topic: sort uses insecure temporary files Category: core Module: sort Announced: 2001-01-29 Credits: Discovered during internal auditing Affects: FreeBSD 3.x all releases...
Security Advisory: FreeBSD-SA-01:12.periodic [REVISED]
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:12 Security Advisory FreeBSD, Inc. Topic: periodic uses insecure temporary files REVISED Category: core Module: periodic Announced: 2001-01-29 Revised: 2001-01-29 Credits...
FreeBSD-SA-01:12.periodic
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:12 Security Advisory FreeBSD, Inc. Topic: periodic uses insecure temporary files REVISED Category: core Module: periodic Announced: 2001-01-29 Revised: 2001-01-29 Credits...
FreeBSD-SA-01:13.sort
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:13 Security Advisory FreeBSD, Inc. Topic: sort uses insecure temporary files Category: core Module: sort Announced: 2001-01-29 Credits: Discovered during internal auditin...
Дырка в WebMIN
небезопасное создание временных файлов...
FreeBSD-SA-01:03.bash1
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-01:03 Security Advisory FreeBSD, Inc. Topic: bash1 creates insecure temporary files Category: ports Module: bash1 Announced: 2001-01-15 Affects: Ports collection prior to th...
[SECURITY] [DSA-008-1] dialog symlink attack
Package : dialog Problem type : insecure temporary files Debian-specific: no Matt Kraai reported that he found a problem in the way dialog creates lock-files: it did not create them safely which made it susceptible to a symlink attack. This has been fixed in version 0.9a-20000118-3bis. wget url...
ksh.temp-hole.txt
Author: Paul Szabo Recently I reported that, similarly to the recently discussed tcsh vulnerability, the Bourne shell /bin/sh creates temporary files in an insecure way: http://www.securityfocus.com/templates/archive.pike?list=1&msg=200011230225.N [email protected] At the time I als...
SunOS 5.7 Catman - Local Insecure tmp Symlink Clobber
SunOS 5.7 Catman - Local Insecure tmp Symlink Clobber !/usr/local/bin/perl -w The problem is catman creates files in /tmp insecurly. They are based on the PID of the catman process, catman will happily clobber any files that are symlinked to that file. The idea of this script is to watch the...
Solaris 2.7/2.8 Catman - Local Insecure tmp Symlink
!/usr/local/bin/perl -w The problem is catman creates files in /tmp insecurly. They are based on the PID of the catman process, catman will happily clobber any files that are symlinked to that file. The idea of this script is to create a block of symlinks to the target file with the current PID a...
[SECURITY] New version of tcsh released
------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Wichert Akkerman November 11, 2000 - ------------------------------------------------------------------------ Package: tcsh Vulnerability: local...
IBM AIX 4.2.1 - snap Insecure Temporary File Creation
IBM AIX 4.2.1 - snap Insecure Temporary File Creation source: https://www.securityfocus.com/bid/375/info The snap command is a diagnostic utlitiy for gathering system information on AIX platforms. It can only be executed by root, but it copies various system files into /tmp/ibmsupt/ under...
[SECURITY] New version of premail fixes /tmp file problem
We have received a report that premail uses temporary files in /tmp using unsecure methods for opening them. This is fixed in the new 0.45-4 release. We recommend you upgrade your samba package immediately. dpkg -i file.deb will install the referenced file. Debian GNU/Linux 1.3.1 alias bo Source...