Arbitrary File Download Vulnerability in ESearch of Shanghai Panmicro Network Technology Co.

Ltd. is a company focusing on the field of collaborative management software to help organizations build a unified digital office platform. Ltd. ESearch suffers from an arbitrary file download vulnerability that can be exploited by attackers to obtain sensitive information...

GLSA-200407-01 : Esearch: Insecure temp file handling

The remote host is affected by the vulnerability described in GLSA-200407-01 Esearch: Insecure temp file handling The eupdatedb utility uses a temporary file /tmp/esearchdb.py.tmp to indicate that the eupdatedb process is running. When run, eupdatedb checks to see if this file exists, but it does...

CVE-2004-0655

eupdatedb in esearch 0.6.1 and earlier allows local users to create arbitrary files via a symlink attack on the esearchdb.py.tmp temporary file...

[ GLSA 200407-01 ] Esearch: Insecure temp file handling

Gentoo Linux Security Advisory GLSA 200407-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...