5 matches found
GHSA-96VH-4RFP-C42C HTSJDK is vulnerable to exposure of resource(s) to the wrong sphere
The package com.github.samtools:htsjdk before 3.0.1 are vulnerable to Creation of Temporary File in Directory with Insecure Permissions due to the createTempDir function in util/IOUtil.java not checking for the existence of the temporary directory before attempting to create it...
Privilege Escalation Via Insecure Directory Creation
ansible is susceptible to privilege escalation. When it is running a module with become-user, a temporary directory /var/tmp is created for for the becomeuser using umask 77 && mkdir -p in /var/tmp without checking the existence of parent directories and its permissions, allowing a user on the no...
CVE-2007-6050
Unspecified vulnerability in DB2LICD in IBM DB2 UDB 9.1 before Fixpak 4 has unknown impact and attack vectors, related to creation of an "insecure directory."...
LogWatch 2.1.1/2.5 - Insecure Temporary Directory Creation
source: https://www.securityfocus.com/bid/4374/info LogWatch is a freely available, open source script for monitoring log files. It may be used with the Linux and Unix Operating systems. Upon execution, LogWatch creates a directory in /tmp. This directory uses the name logwatch.$pid, where $pid i...
SuSE 6.x7.0 - MkDir Error Handling rctab Race Condition (2)
SuSE 6.x7.0 - MkDir Error Handling rctab Race Condition 2 source: https://www.securityfocus.com/bid/2207/info rctab is the Run Control Tab script included with the SuSE distribution of the Linux Operating System. SuSE is a freely available, Open Source Operating system maintained by SuSE...