25 matches found
CVE-2005-0225
CVE-2005-0225 affects FireHOL: FireHOL (before 1.224) insecurely creates temporary files with predictable names, enabling local users to overwrite arbitrary files via a symlink attack. Documented in OSV OSV-2005-0225 and Gentoo GLSA 200502-01; Gentoo and Debian advisories reference the same issue...
CVE-2005-0225
firehol.sh in FireHOL before 1.224 creates temporary files with predictable file names, which could allow local users to overwrite arbitrary files via a symlink attack...
FireHOL: Insecure temporary file creation
Background FireHOL is an iptables rules generator. Description FireHOL insecurely creates temporary files with predictable names. Impact A local attacker could create malicious symbolic links to arbitrary system files. When FireHOL is executed, this could lead to these files being overwritten wit...
FireHOL Linux firewall builder symbolic links problem
Symbolic links problem on temporary files creation...
[SA13970] FireHOL Insecure Temporary File Creation Vulnerabilities
TITLE: FireHOL Insecure Temporary File Creation Vulnerabilities SECUNIA ADVISORY ID: SA13970 VERIFY ADVISORY: http://secunia.com/advisories/13970/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: FireHOL 1.x http://secunia.com/product/4556/ DESCRIPTION: Sam Coute...