9 matches found
The vulnerability of the Gentoo Linux operating system allows a malicious individual to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the lsat package up to version 0.9.5 of the Gentoo Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited by a malicious individual who has completed the authentication proce...
CVE-2014-6707
The 7Sage LSAT Prep - Proctor aka com.sevensage.lsat application 2.1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6707
The 7Sage LSAT Prep - Proctor aka com.sevensage.lsat application 2.1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6707
The CVE-2014-6707 entry concerns the Android app 7Sage LSAT Prep - Proctor (com.sevensage.lsat), version 2.1.1. The vulnerability is failure to verify X.509 certificates from SSL servers, enabling man‑in‑the‑middle attackers to spoof servers and read sensitive data via a crafted certificate. Per ...
Gentoo Security Advisory GLSA 200703-20 (lsat)
The remote host is missing updates announced in advisory GLSA 200703-20. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200703-20 (lsat)
The remote host is missing updates announced in advisory GLSA 200703-20. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2007-1500
CVE-2007-1500 affects the Linux Security Auditing Tool (LSAT). The vulnerability arises from insecure temporary file handling: LSAT creates temporary files in /tmp with a predictable name, enabling a local attacker to exploit a symlink attack to overwrite arbitrary files with the caller’s privile...
[ GLSA 200703-20 ] LSAT: Insecure temporary file creation
Gentoo Linux Security Advisory GLSA 200703-20 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
GLSA-200703-20 : LSAT: Insecure temporary file creation
The remote host is affected by the vulnerability described in GLSA-200703-20 LSAT: Insecure temporary file creation LSAT insecurely writes in /tmp with a predictable filename. Impact : A local attacker could create symbolic links in the temporary files directory, pointing to a valid file somewher...