30 matches found
EUVD-2000-0295
Malware in sbrugna...
EUVD-2006-1753
Malware in sbrugna...
Vulnerabilities of the Debian GNU/Linux operating system, which allow a local malicious individual to compromise the confidentiality and integrity of protected information
The fcheck package of the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities can lead to breaches of confidentiality and integrity of protected information. These vulnerabilities can be exploited by local malicious individuals...
kernel: add rcu_read_lock() to fcheck() in both dnotify, locks.c and fix fcntl store/load race in locks.c
Linux kernel before 2.6.25.2 does not apply a certain protection mechanism for fcntl functionality, which allows local users to 1 execute code in parallel or 2 exploit a race condition to obtain "re-ordered access to the descriptor table."...
kernel: add rcu_read_lock() to fcheck() in both dnotify, locks.c and fix fcntl store/load race in locks.c
Linux kernel before 2.6.25.2 does not apply a certain protection mechanism for fcntl functionality, which allows local users to 1 execute code in parallel or 2 exploit a race condition to obtain "re-ordered access to the descriptor table."...
Debian Security Advisory DSA 1035-1 (fcheck)
The remote host is missing an update to fcheck announced via advisory DSA 1035-1. Steve Kemp from the Debian Security Audit project discovered that a cronjob contained in fcheck, a file integrity checker, creates a temporary file in an insecure fashion. The old stable distribution woody is not...
Debian: Security Advisory (DSA-1035-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1035-1 : fcheck - insecure temporary file
Steve Kemp from the Debian Security Audit project discovered that a cronjob contained in fcheck, a file integrity checker, creates a temporary file in an insecure fashion. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fr...
CVE-2006-1753
A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...
DEBIAN-CVE-2006-1753
A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...
CVE-2006-1753
A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...
CVE-2006-1753
A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...
Design/Logic Flaw
A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...
CVE-2006-1753
The CVE-2006-1753 entry concerns the fcheck package, where a cronjob creates a temporary file insecurely, enabling local users to overwrite arbitrary files via a symlink attack. Affected component: fcheck (cronjob). Root cause: insecure handling of a temporary file. Impact: local privilege impact...
CVE-2006-1753
A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...
CVE-2006-1753
A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...
[SECURITY] [DSA 1035-1] New fcheck packages fix insecure temporary file creation
-------------------------------------------------------------------------- Debian Security Advisory DSA 1035-1 [email protected] http://www.debian.org/security/ Steve Kemp April 15th, 2005 http://www.debian.org/security/faq -...
fcheck symbolic links
Insecure temporary file creation...
[Full-disclosure] [SECURITY] [DSA 1035-1] New fcheck packages fix insecure temporary file creation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1035-1 [email protected] http://www.debian.org/security/ Steve Kemp April 15th, 2005 http://www.debian.org/security/faq -...
CVE-2001-0370
fcheck prior to 2.57.59 calls the file signature checking program insecurely, which can allow a local user to run arbitrary commands via a file name that contains shell metacharacters...