EUVD-2008-4936

Malware in sbrugna...

Gentoo Security Advisory GLSA 200909-11 (gccxml)

The remote host is missing updates announced in advisory GLSA 200909-11. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

Gentoo Security Advisory GLSA 200909-11 (gccxml)

The remote host is missing updates announced in advisory GLSA 200909-11. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Kitware GCC-XML 'find_flags'脚本不安全临时文件建立漏洞

Bugraq ID: 36318 CVE ID： CVE-2008-4957 GCC-XML是一款c++语法分析器,是gcc编译器的前端。 Kitware GCC-XML 'findflags'脚本在/tmp中不安全建立临时文件，本地攻击者可以利用漏洞通过符号链接覆盖系统中任意文件。 Kitware GCC-XML 0.9 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496391...

[ GLSA 200909-11 ] GCC-XML: Insecure temporary file usage

Gentoo Linux Security Advisory GLSA 200909-11 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

gcc-xml symlink vulnerability

Symbolic links vulnerability on insecure temporary files creation...

GLSA-200909-11 : GCC-XML: Insecure temporary file usage

The remote host is affected by the vulnerability described in GLSA-200909-11 GCC-XML: Insecure temporary file usage Dmitry E. Oboukhov reported that findflags in GCC-XML does not handle '/tmp/.cxx' temporary files securely. Impact : A local attacker could perform symlink attacks to overwrite...

GCC-XML: Insecure temporary file usage

Background GCC-XML is an XML output extension to the C++ front-end of GCC. Description Dmitry E. Oboukhov reported that findflags in GCC-XML does not handle "/tmp/.cxx" temporary files securely. Impact A local attacker could perform symlink attacks to overwrite arbitrary files with the privileges...

CVE-2008-4957

findflags in Kitware GCC-XML gccxml 0.9.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.cxx temporary file...

Arbitrary file deletion

findflags in Kitware GCC-XML gccxml 0.9.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.cxx temporary file...

CVE-2008-4957

findflags in Kitware GCC-XML gccxml 0.9.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.cxx temporary file...

CVE-2008-4957

findflags in Kitware GCC-XML gccxml 0.9.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.cxx temporary file...

CVE-2008-4957

CVE-2008-4957 affects Kitware GCC-XML (gccxml) 0.9.0. The vulnerability arises from insecure temporary file handling in the find_flags routine, which creates/opens a file under /tmp/*.cxx in a way that allows a local attacker to exploit a symlink and overwrite arbitrary files. Impact: potential c...