7 matches found
Debian Security Advisory DSA 559-1 (net-acct)
The remote host is missing an update to net-acct announced via advisory DSA 559-1. OpenVAS Vulnerability Test $Id: deb5591.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 559-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
CVE-2004-0851
CVE-2004-0851 affects Net-Acct before version 0.71, where write_list and dump_curr_list could allow local users to overwrite arbitrary files via insecure temporary file handling (symlink attack). Mitigation: Debian fixed in DSA-559-1, upgrading net-acct to 0.71-5woody1 (and 0.71-7 for sid) is rec...
CVE-2004-0851
The 1 writelist and 2 dumpcurrlist functions in Net-Acct before 0.71 allows local users to overwrite arbitrary files via a symlink attack on temporary files...
CVE-2004-0851
The 1 writelist and 2 dumpcurrlist functions in Net-Acct before 0.71 allows local users to overwrite arbitrary files via a symlink attack on temporary files...
Debian DSA-559-1 : net-acct - insecure temporary file
Stefan Nordhausen has identified a local security hole in net-acct, a user-mode IP accounting daemon. Old and redundant code from some time way back in the past created a temporary file in an insecure fashion. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
CVE-2004-0851
The 1 writelist and 2 dumpcurrlist functions in Net-Acct before 0.71 allows local users to overwrite arbitrary files via a symlink attack on temporary files...
CVE-2004-0851
The 1 writelist and 2 dumpcurrlist functions in Net-Acct before 0.71 allows local users to overwrite arbitrary files via a symlink attack on temporary files...