Azure Linux 3.0 Security Update: nano (CVE-2024-5742)

The version of nano installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-5742 advisory. - A vulnerability was found in GNU Nano that allows a possible privilege escalation through an insecure temporary...

EUVD-2011-3577

Malware in sbrugna...

EUVD-2008-7226

Malware in sbrugna...

CVE-2008-7273

A symlink issue exists in Iceweasel-firegpg before 0.6 due to insecure tempfile handling...

CVE-2008-7273

A symlink issue exists in Iceweasel-firegpg before 0.6 due to insecure tempfile handling...

Design/Logic Flaw

A symlink issue exists in Iceweasel-firegpg before 0.6 due to insecure tempfile handling...

CVE-2008-7273

CVE-2008-7273 describes a symlink issue in Iceweasel-firegpg before 0.6 caused by insecure tempfile handling. Affected component is Iceweasel-firegpg; root cause is insecure tempfile handling leading to a symlink-related vulnerability. The CVSS data in the linked records indicates a local attack ...

CVE-2008-7273

A symlink issue exists in Iceweasel-firegpg before 0.6 due to insecure tempfile handling...

CVE-2011-3618

atop: symlink attack possible due to insecure tempfile handling...

DEBIAN-CVE-2011-3618

atop: symlink attack possible due to insecure tempfile handling...

CVE-2011-3618

atop: symlink attack possible due to insecure tempfile handling...

CVE-2011-3618

atop: symlink attack possible due to insecure tempfile handling...

CVE-2011-3618

CVE-2011-3618 relates to a symlink attack caused by insecure tempfile handling in the tool described as “atop.” The linked records (NVD, OSV, Debian/Ubuntu trackers and others) consistently cite this issue as a local‑attack vulnerability with insecure tempfile handling, leading to potential expos...

CVE-2011-3618

atop: symlink attack possible due to insecure tempfile handling...

Insecure Tempfile Usage

ansible is vulnerable to insecure tempfile usage. The library creates temporary file names based on the system time. This can allow a malicious user to guess the temporary file name based on the system time, leading to sensitive information being disclosed...

Insecure tempfile handling Vulnerability in TWiki (Sep 2008)

TWiki is prone to an insecure temp file handling vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:twiki:twiki";...

[Full-disclosure] SimpleCDR-X - Insecure tempfile handling

SimpleCDR-X - Insecure tempfile handling +----------------------------------------+ Date: 2005-09-15 URL: http://ogre.rocky-road.net/cdr.shtml Vendor Notified: Days ago, no answer. Version: 1.3.3 latest - Description - Files beeing recorded can be read by any user on the system due to insecure...

GLSA-200411-22 : Davfs2, lvm-user: Insecure tempfile handling

The remote host is affected by the vulnerability described in GLSA-200411-22 Davfs2, lvm-user: Insecure tempfile handling Florian Schilhabel from the Gentoo Linux Security Audit Team found that Davfs2 insecurely created .pid files in /tmp. Furthermore, Trustix Secure Linux found that the...

GLSA-200411-17 : mtink: Insecure tempfile handling

The remote host is affected by the vulnerability described in GLSA-200411-17 mtink: Insecure tempfile handling Tavis Ormandy from Gentoo Linux discovered that mtink uses insecure permissions on temporary files. Impact : A local attacker could create symbolic links in the temporary files directory...

Davfs2, lvm-user: Insecure tempfile handling

Background Davfs2 is a file system driver that allows you to mount a WebDAV server as a local disk drive. lvm-user is a package providing userland utilities for LVM Logical Volume Management 1.x features. Description Florian Schilhabel from the Gentoo Linux Security Audit Team found that Davfs2...