Debian DSA-105-1 : enscript - insecure temporary files

The version of enscript a tool to convert ASCII text to different formats in potato has been found to create temporary files insecurely. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-105...

Debian DSA-426-1 : netpbm-free - insecure temporary files

netpbm is a graphics conversion toolkit made up of a large number of single-purpose programs. Many of these programs were found to create temporary files in an insecure manner, which could allow a local attacker to overwrite files with the privileges of the user invoking a vulnerable netpbm tool...

Debian DSA-500-1 : flim - insecure temporary file

Tatsuya Kinoshita discovered a vulnerability in flim, an emacs library for working with internet messages, where temporary files were created without taking appropriate precautions. This vulnerability could potentially be exploited by a local user to overwrite files with the privileges of the use...

Debian DSA-497-1 : mc - several vulnerabilities

Jacub Jelinek discovered several vulnerabilities in the Midnight Commander, a powerful file manager for GNU/Linux systems. The problems were classified as follows : CAN-2004-0226 Buffer overflows CAN-2004-0231 Insecure temporary file and directory creations CAN-2004-0232 Format string problems...

FreeBSD : GNU libtool insecure temporary file handling (95)

The following package needs to be updated: libtool %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkgcacaffbc5e6411d880e30020ed76ef5a.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...

[SECURITY] [DSA 483-1] New mysql packages fix insecure temporary file creation

-------------------------------------------------------------------------- Debian Security Advisory DSA 483-1 [email protected] http://www.debian.org/security/ Martin Schulze April 14th, 2004 http://www.debian.org/security/faq -...

CVE-2003-1294

Xscreensaver before 4.15 creates temporary files insecurely in 1 driver/passwd-kerberos.c, 2 driver/xscreensaver-getimage-video, 3 driver/xscreensaver.kss.in, and the 4 vidwhacker and 5 webcollage screensavers, which allows local users to overwrite arbitrary files via a symlink attack...

Symbolic links problem in cdwrite

Temporary files are created in insecure manner...

DEBIAN-CVE-2003-0539

skk Simple Kana to Kanji conversion program 12.1 and earlier, and the ddskk package which is based on skk, creates temporary files insecurely, which allows local users to overwrite arbitrary files...

CVE-2003-0606

sup 1.8 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files...

sup symbolic links

Insecure temporary files creation...

CVE-2003-0381

Multiple vulnerabilities in noweb 2.9 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files via multiple vectors including the noroff script...

DSA-323 noweb - insecure temporary files

Bulletin has no description...

CVE-2003-0308

The Sendmail 8.12.3 package in Debian GNU/Linux 3.0 does not securely create temporary files, which could allow local users to gain additional privileges via 1 expn, 2 checksendmail, or 3 doublebounce.pl...

DSA-292-2 mime-support - insecure temporary file creation

Bulletin has no description...

DSA-172 tkmail - insecure temporary files

Bulletin has no description...

Уязвимости GNU Emacs

В программах, основанных на Emacs можно контролировать PTY пользователя, небезопасно создаются временные файлы легко угадываемое имя, хранится последовательность нажатых клавиш, что позволяет извлечь пароль пользователя...