12 matches found
EUVD-2007-5910
Malware in sbrugna...
SUSE CVE-2007-5940
feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the feynmf$$.pl temporary file...
Gentoo Security Advisory GLSA 200711-32 (feynmf)
The remote host is missing updates announced in advisory GLSA 200711-32. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200711-32 (feynmf)
The remote host is missing updates announced in advisory GLSA 200711-32. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-200711-32 : Feynmf: Insecure temporary file creation
The remote host is affected by the vulnerability described in GLSA-200711-32 Feynmf: Insecure temporary file creation Kevin B. McCarty discovered that the feynmf.pl script creates a temporary 'properly list' file at the location '$TMPDIR/feynmf$PID.pl', where $PID is the process ID. Impact : A...
[ GLSA 200711-32 ] Feynmf: Insecure temporary file creation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200711-32 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...
Feynmf symbolic links vulnerability
feynmf.pl symbolic linkcs vulnerability on temporary files creation...
Feynmf: Insecure temporary file creation
Background Feynmf is a combined LaTeX and Metafont package for easy drawing of professional quality Feynman and maybe other diagrams. Description Kevin B. McCarty discovered that the feynmf.pl script creates a temporary "properly list" file at the location "$TMPDIR/feynmf$PID.pl", where $PID is t...
CVE-2007-5940
feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the feynmf$$.pl temporary file...
DEBIAN-CVE-2007-5940
feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the feynmf$$.pl temporary file...
CVE-2007-5940
feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the feynmf$$.pl temporary file...
CVE-2007-5940
CVE-2007-5940 affects feynmf 1.08 (as used in TeXLive 2007). A local attacker can exploit a symlink-related race in the temporary file feynmf$PID.pl created by feynmf.pl, allowing overwriting arbitrary files and potential code execution. The documented impact includes partial confidentiality, int...