Mandriva Linux Security Advisory : R-base (MDVSA-2008:198)

A symlink vulnerability was found in the javareconf script in R that allows local users to overwrite arbitrary files CVE-2008-3931. The updated packages have been patched to prevent this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

Mandriva Update for R-base MDVSA-2008:198 (R-base)

Check for the Version of R-base OpenVAS Vulnerability Test Mandriva Update for R-base MDVSA-2008:198 R-base Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

R symbolic links security vulnerability

javareconf script insecure temporary fiels creation...

CVE-2008-3931

javareconf in R 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files...

DEBIAN-CVE-2008-3931

javareconf in R 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files...

CVE-2008-3931

Summary of CVE-2008-3931 (R-base): A symlink-based vulnerability in the javareconf script of R allowed local attackers to overwrite arbitrary files via insecure temporary file handling. The issue is rooted in the way temporary files are created by javareconf, enabling a local write when the scrip...

CVE-2008-3931

javareconf in R 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files...