Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.23 views

Debian Security Advisory DSA 1035-1 (fcheck)

The remote host is missing an update to fcheck announced via advisory DSA 1035-1. Steve Kemp from the Debian Security Audit project discovered that a cronjob contained in fcheck, a file integrity checker, creates a temporary file in an insecure fashion. The old stable distribution woody is not...

3.6CVSS6.5AI score0.00353EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.14 views

Debian: Security Advisory (DSA-1035-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.6CVSS7.2AI score0.00353EPSS
Exploits0References3
OSV
OSV
added 2006/04/15 12:0 a.m.16 views

DSA-1035-1 fcheck - insecure temporary file

Bulletin has no description...

3.6CVSS6.4AI score0.00353EPSS
Exploits0
securityvulns
securityvulns
added 2001/03/22 12:0 a.m.35 views

fcheck prior to 2.07.59 - vulnerability - improper use of perl 'magic open'

VULNERABLE: Probably all versions prior to 2.07.59 - the author of fcheck can't be bothered to note security fixes in his change log, but most likely all prior versions had this vulnerability. Vulnerability: by placing a carefully crafted filename in a directory checked by vulnerable versions of...

1.4AI score
Exploits0
Packet Storm
Packet Storm
added 2000/04/07 12:0 a.m.31 views

fcheck.txt

The short explanation: fcheck is a file integrity checker written in perl. It can send warnings to syslog via an external program such as logger1. Because it calls system with a scalar argument, a malicious user can cause it to execute programs by creating files with shell metacharacters in their...

7.4AI score
Exploits0
Rows per page
Query Builder