EUVD-2008-4947

Malware in sbrugna...

Arbitrary Files Overwrite

lmbench is vulnerable to arbitrary files overwrite. The rccs and STUFF scripts allow local users to overwrite arbitrary files via a symlink attack on a /tmp/sdiff temporary file directory...

Gentoo Security Advisory GLSA 200909-10 (lmbench)

The remote host is missing updates announced in advisory GLSA 200909-10. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200909-10 (lmbench)

The remote host is missing updates announced in advisory GLSA 200909-10. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

GLSA-200909-10 : LMBench: Insecure temporary file usage

The remote host is affected by the vulnerability described in GLSA-200909-10 LMBench: Insecure temporary file usage Dmitry E. Oboukhov reported that the rccs and STUFF scripts do not handle '/tmp/sdiff.' temporary files securely. NOTE: There might be further occurances of insecure temporary file...

LMBench symbolic links vulnerability

Insecure temporary files creation...

[ GLSA 200909-10 ] LMBench: Insecure temporary file usage

Gentoo Linux Security Advisory GLSA 200909-10 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

LMBench: Insecure temporary file usage

Background LMBench is a suite of simple, portable benchmarks for UNIX platforms. Description Dmitry E. Oboukhov reported that the rccs and STUFF scripts do not handle "/tmp/sdiff." temporary files securely. NOTE: There might be further occurances of insecure temporary file usage. Impact A local...

CVE-2008-4968

The 1 rccs and 2 STUFF scripts in lmbench 3.0-a7 allow local users to overwrite arbitrary files via a symlink attack on a /tmp/sdiff. temporary file...

DEBIAN-CVE-2008-4968

The 1 rccs and 2 STUFF scripts in lmbench 3.0-a7 allow local users to overwrite arbitrary files via a symlink attack on a /tmp/sdiff. temporary file...

CVE-2008-4968

The 1 rccs and 2 STUFF scripts in lmbench 3.0-a7 allow local users to overwrite arbitrary files via a symlink attack on a /tmp/sdiff. temporary file...

CVE-2008-4968

The CVE-2008-4968 entry concerns lmbench (version 3.0-a7) where the rccs and STUFF scripts insecurely handle /tmp/sdiff.##### temporary files, enabling local attackers to perform symlink attacks and overwrite arbitrary files with the invoking user’s privileges. Documentation consistently cites lo...

CVE-2008-4968

The 1 rccs and 2 STUFF scripts in lmbench 3.0-a7 allow local users to overwrite arbitrary files via a symlink attack on a /tmp/sdiff. temporary file...

CVE-2008-4968

The 1 rccs and 2 STUFF scripts in lmbench 3.0-a7 allow local users to overwrite arbitrary files via a symlink attack on a /tmp/sdiff. temporary file...