Lucene search
K

848 matches found

Tenable Nessus
Tenable Nessus
added 2004/11/02 12:0 a.m.26 views

Mandrake Linux Security Advisory : netatalk (MDKSA-2004:121)

The etc2ps.sh script, part of the netatalk package, creates files in /tmp with predicatable names which could allow a local attacker to use symbolic links to point to a valid file on the filesystem which could lead to the overwriting of arbitrary files if etc2ps.sh is executed by someone with...

2.1CVSS5.7AI score0.00393EPSS
Exploits0References1
securityvulns
securityvulns
added 2004/10/26 12:0 a.m.35 views

[SA12976] Netatalk "etc2ps.sh" Script Insecure Temporary File Creation

TITLE: Netatalk "etc2ps.sh" Script Insecure Temporary File Creation SECUNIA ADVISORY ID: SA12976 VERIFY ADVISORY: http://secunia.com/advisories/12976/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: Netatalk 2.x http://secunia.com/product/4147/ Netatalk 1.x...

1.1AI score
Exploits0
securityvulns
securityvulns
added 2004/10/26 12:0 a.m.58 views

Netatalk symbolic links problem

Symboli links problem in etc2ps.sh script...

1.2AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2004/10/26 12:0 a.m.33 views

GLSA-200410-25 : Netatalk: Insecure tempfile handling in etc2ps.sh

The remote host is affected by the vulnerability described in GLSA-200410-25 Netatalk: Insecure tempfile handling in etc2ps.sh The etc2ps.sh script creates temporary files in world-writeable directories with predictable names. Impact : A local attacker could create symbolic links in the temporary...

2.1CVSS5.5AI score0.00393EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2004/10/25 12:0 a.m.34 views

Netatalk: Insecure tempfile handling in etc2ps.sh

Background Netatalk is a kernel level implementation of the AppleTalk Protocol Suite, which allows Unix hosts to act as file, print, and time servers for Apple computers. It includes several script utilities, including etc2ps.sh. Description The etc2ps.sh script creates temporary files in...

2.1CVSS6AI score0.00393EPSS
Exploits0
CVE
CVE
added 2004/10/20 4:0 a.m.68 views

CVE-2004-0974

CVE-2004-0974 concerns the Netatalk package where a local user can overwrite files via a symlink attack on temporary files. The initial description specifies Trustix Secure Linux 1.5–2.1 and possibly other OSes as affected, with the root cause being insecure temporary-file handling in etc2ps.sh. ...

2.1CVSS6AI score0.00393EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2004/10/20 4:0 a.m.36 views

CVE-2004-0974

The netatalk package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files...

2.1CVSS6AI score0.00393EPSS
Exploits0
Cvelist
Cvelist
added 2004/10/20 4:0 a.m.30 views

CVE-2004-0974

The netatalk package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files...

6AI score0.00393EPSS
Exploits0References3
Rows per page
Query Builder