EUVD-2016-5001

Malware in sbrugna...

CVE-2016-3992

cronic before 3 allows local users to write to arbitrary files via a symlink attack on a 1 cronic.out.$$, 2 cronic.err.$$, or 3 cronic.trace.$$ file in /tmp...

CVE-2016-3992

cronic before 3 allows local users to write to arbitrary files via a symlink attack on a 1 cronic.out.$$, 2 cronic.err.$$, or 3 cronic.trace.$$ file in /tmp...

CVE-2016-3992

cronic before 3 allows local users to write to arbitrary files via a symlink attack on a 1 cronic.out.$$, 2 cronic.err.$$, or 3 cronic.trace.$$ file in /tmp...

CVE-2016-3992

CVE-2016-3992 affects cronic prior to version 3, enabling local users to write arbitrary files via a symlink attack against cronic.out.$$, cronic.err.$$, or cronic.trace.$$ in /tmp. Root cause: symlink manipulation in temporary files. Practical impact: local privilege or data tampering risk with ...

CVE-2016-3992

cronic before 3 allows local users to write to arbitrary files via a symlink attack on a 1 cronic.out.$$, 2 cronic.err.$$, or 3 cronic.trace.$$ file in /tmp...

cronic Arbitrary File Write Vulnerability

cronic is a shell script maintained by software developer Daniel Lange for wrapping cron jobs to prevent redundant email delivery. An arbitrary file write vulnerability exists in cronic, which can be exploited by an attacker by creating a symbolic link /tmp/cronic.out.PID - /etc/fstab to write...