EUVD-2012-5513

Malware in sbrugna...

Malicious code in test-mlw2-gofer-runds-rahed-palsy (npm)

The package test-mlw2-gofer-runds-rahed-palsy was found to contain malicious code...

gofer Denial of Service Vulnerability

gofer is an open source, extensible lightweight Python agent program. A security vulnerability exists in gofer that stems from the program assigning global writable permissions to /var/lib/gofer/journal/watchdog. A local attacker can exploit this vulnerability to cause a denial of service by...

CVE-2012-5628

gofer before 0.68 uses world-writable permissions for /var/lib/gofer/journal/watchdog, which allows local users to cause a denial of service by removing journal entries...

Design/Logic Flaw

gofer before 0.68 uses world-writable permissions for /var/lib/gofer/journal/watchdog, which allows local users to cause a denial of service by removing journal entries...

CVE-2012-5628

CVE-2012-5628 affects gofer prior to 0.68. It arises from world-writable permissions on /var/lib/gofer/journal/watchdog, enabling a local attacker to cause a denial of service by removing journal entries. Multiple sources corroborate the issue and point to upgrading to version 0.68 as the remedy....

CVE-2012-5628

gofer before 0.68 uses world-writable permissions for /var/lib/gofer/journal/watchdog, which allows local users to cause a denial of service by removing journal entries...