3 matches found
SLES9: Security update for arc
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: arc For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5015664 within the SuSE...
SuSE9 Security Update : arc (YOU Patch Number 10496)
This updates fixes two bugs : - Eric Romang discovered that the ARC archive program under Unix creates a temporary file with insecure permissions which may lead to an attacker stealing sensitive information. CVE-2005-2945 - Joey Schulze discovered that the temporary file was created in an insecur...
CVE-2005-2945
CVE-2005-2945 affects the ARC archive utility (and ARC-derived ARC/ARCC variants) in Unix-like systems: ARC creates temporary files with world-readable permissions, allowing local users to read sensitive information. Related CVE-2005-2992 describes a symlink-based flaw that also involves insecure...