EUVD-2000-0295

Malware in sbrugna...

EUVD-2006-1753

Malware in sbrugna...

CVE-2006-1753

A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

Design/Logic Flaw

A cron job in fcheck before 2.7.59 allows local users to overwrite arbitrary files via a symlink attack on a temporary file...

fcheck prior to 2.07.59 - vulnerability - improper use of perl 'magic open'

VULNERABLE: Probably all versions prior to 2.07.59 - the author of fcheck can't be bothered to note security fixes in his change log, but most likely all prior versions had this vulnerability. Vulnerability: by placing a carefully crafted filename in a directory checked by vulnerable versions of...

Дырка в fcheck (input validation)

При вызове внешней программы с именем файла не проверяется наличией shell-символов в имени файла...

fcheck v.2.7.45 and insecure use of Perl's system()

The short explanation: fcheck is a file integrity checker written in perl. It can send warnings to syslog via an external program such as logger1. Because it calls system with a scalar argument, a malicious user can cause it to execute programs by creating files with shell metacharacters in their...

Дырка fcheck v.2.7.45

Вызов system из скрипта perl без проверки аргумента позволяет пользователю получить привелегии программы сконструировав специальное имя файла...

CVE-2000-0296

fcheck allows local users to gain privileges by embedding shell metacharacters into file names that are processed by fcheck...