117 matches found
[SECURITY] [DSA 2147-1] Security update for pimd
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2147-1 [email protected] http://www.debian.org/security/ Steve Kemp January 16, 2011 http://www.debian.org/security/faq -...
DSA-2147-1 pimd - insecure temporary files
Bulletin has no description...
pyftpd Multiple Vulnerabilities
pyftpd is prone to multiple vulnerabilities. 1. pyftpd is prone to multiple default-account vulnerabilities. These issues stem from a design flaw that makes several accounts available to remote attackers. Successful exploits allow remote attackers to gain unauthorized access to a vulnerable...
LMBench symbolic links vulnerability
Insecure temporary files creation...
CVE-2009-2461
mathtex.cgi in mathTeX, when downloaded before 20090713, does not securely create temporary files, which has unspecified impact and local attack vectors...
Openswan <= 2.4.12/2.6.16 Insecure Temp File Creation Root Exploit
No description provided by source. !/bin/bash uglyswan - OpenSwan local root exploit CVE-2008-4190 description: The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the ...
DTSA-177-1 liquidsoap - insecure temporary file handling
Bulletin has no description...
[SECURITY] [DSA 1492-1] New wml packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1492-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 10, 2008 http://www.debian.org/security/faq -...
DSA-1492-1 wml
Bulletin has no description...
Debian: Security Advisory (DSA-661-2)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-200711-32 : Feynmf: Insecure temporary file creation
The remote host is affected by the vulnerability described in GLSA-200711-32 Feynmf: Insecure temporary file creation Kevin B. McCarty discovered that the feynmf.pl script creates a temporary 'properly list' file at the location '$TMPDIR/feynmf$PID.pl', where $PID is the process ID. Impact : A...
QGit git repository graphical interface symbolic links
Insecure temporary files creation...
Debian DSA-1329-1 : gfax - insecure temporary files
Steve Kemp from the Debian Security Audit project discovered that gfax, a GNOME frontend for fax programs, uses temporary files in an unsafe manner which may be exploited to execute arbitrary commands with the privileges of the root user. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
FreeBSD : f2c -- insecure temporary files (43cb40b3-c8c2-11da-a672-000e0c2e438a)
Javier Fernandez-Sanguino Pena reports two temporary file vulnerability within f2c. The vulnerabilities are caused due to weak temporary file handling. An attacker could create an symbolic link, causing a local user running f2c to overwrite the symlinked file. This could give the attacker elevate...
ejabberd installation script symbolic links problem
Insecure /tmp files creations...
Ubuntu 4.10 : gettext vulnerabilities (USN-5-1)
Recently, Trustix Secure Linux discovered some vulnerabilities in the gettext package. The programs 'autopoint' and 'gettextize' created temporary files in an insecure way, which allowed a symlink attack to create or overwrite arbitrary files with the privileges of the user invoking the program...
KLA10373 Vulnerability in TuxPaint
Insecure files creation was found in TuxPaint. By exploiting this vulnerability malicious users can cause unknown impact via unspecified vectors. Original advisories - Related products Tux-Paint-tuxpaint/ CVE list CVE-2005-3340 high Solution Update to latest version Impacts SB Security bypass...
Insecure Temporary Files in BMC/Control-M Agent
BMC's Control M is an enterprise scheduling facility. Unfortunately, the agent software suffers from a problem with insecure temporary file creation. We noticed the problem on Solaris systems running the version 6.1.03 with current patches; it is reasonable to assume that other OS platforms and...
Debian module-assistant symbolic links problem
Symbolic links problem on insecure temporary files creation...
Debian DSA-865-1 : hylafax - insecure temporary files
Javier Fernandez-Sanguino Pena discovered that several scripts of the hylafax suite, a flexible client/server fax software, create temporary files and directories in an insecure fashion, leaving them vulnerable to symlink exploits. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...