5 matches found
CVE-2003-0014
CVE-2003-0014 details : The Debian bmv package (version 1.2 and earlier) is vulnerable to an insecure temporary-file creation flaw that allows a local attacker to overwrite arbitrary files via a symlink attack on temporary files. Debian’s DSA-633-1 describes the impact as local, with exploitation...
CVE-2003-0014
gsinterf.c in bmv 1.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files...
Debian DSA-633-1 : bmv - insecure temporary file
Peter Samuelson, upstream maintainer of bmv, a PostScript viewer for SVGAlib, discovered that temporary files are created in an insecure fashion. A malicious local user could cause arbitrary files to be overwritten by a symlink attack. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
CVE-2003-0014
...
CVE-2003-0014
gsinterf.c in bmv 1.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files...