3 matches found
Gentoo Security Advisory GLSA 200909-07 (tkman)
The remote host is missing updates announced in advisory GLSA 200909-07. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
GLSA-200909-07 : TkMan: Insecure temporary file usage
The remote host is affected by the vulnerability described in GLSA-200909-07 TkMan: Insecure temporary file usage Dmitry E. Oboukhov reported that TkMan does not handle the '/tmp/tkman' and '/tmp/ll' temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite...
CVE-2008-5137
CVE-2008-5137 affects tkman 2.2 and is due to insecure handling of temporary files (/tmp/tkman##### and /tmp/ll), enabling local symlink attacks to overwrite arbitrary files. The issue is documented across multiple sources (Gentoo GLSA 200909-07, SUSE/OpenSUSE advisories, and OpenVAS/Nessus entri...