3 matches found
Gentoo Security Advisory GLSA 200710-10 (skktools)
The remote host is missing updates announced in advisory GLSA 200710-10. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
CVE-2007-3916
The main function in skkdic-expr.c in SKK Tools 1.2 allows local users to overwrite or delete arbitrary files via a symlink attack on a skkdic$PID temporary file...
CVE-2007-3916
CVE-2007-3916 affects SKK Tools 1.2 (skkdic-expr.c): it insecurely writes temporary files to $TMPDIR/skkdic$PID.{pag,dir,db}, enabling a local attacker to create symbolic links and potentially overwrite or modify arbitrary files. The issue is caused by writing to a temporary file named with the p...