3 matches found
[Full-disclosure] [ GLSA 200511-15 ] Smb4k: Local unauthorized file access
Gentoo Linux Security Advisory GLSA 200511-15 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
CVE-2005-2851
smb4k 0.4 and other versions before 0.6.3 allows local users to read sensitive files via a symlink attack on the 1 smb4k.tmp or 2 sudoers temporary files...
CVE-2005-2851
CVE-2005-2851 affects smb4k and related versions prior to 0.6.3, enabling local users to read sensitive files via a symlink attack on temporary files (smb4k.tmp, or sudoers/super.tab). The underlying issue is that Smb4K writes contents to a target file pointed to by an insecure pre-existing symli...